Logfile of random's system information tool 1.10 (written by random/random)
Run by Dada at 2014-07-31 10:27:03
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 140 GB (46%) free of 305 GB
Total RAM: 2046 MB (26% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:27:25, on 31.7.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe
C:\Program Files\epson\portcommunicationservice\PCSVC.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hasplms.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\WINDOWS\System32\svchost.exe
C:\Genius\ioTablet\gTabTaskBar.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
C:\Genius\ioTablet\gIoTabletFunMgm.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\System Explorer\SystemExplorer.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Genius\ioTablet\TabletService.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Genius\ioTablet\gTabletTask.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\System Explorer\service\SystemExplorerService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\wincmd\WINCMD32.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
c:\Documents and Settings\Dada\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Dada.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [ioTablet] "C:\Genius\ioTablet\gTabTaskBar.exe"
O4 - HKLM\..\Run: [Hard Disk Sentinel] "C:\Program Files\Hard Disk Sentinel\HDSentinel.exe" /AUTORUN
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3612128790-3562664508-856553003-1026\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O4 - Global Startup: ASUS WiFi-AP Solo.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: Select a coupon.lnk = ?
O4 - Global Startup: TM-T88V Utility(Automatic Restore).lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} - http://download.seznam.cz/listicka/toolbar2007.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 8277405093
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EPSON Device Control Log Service (EPSON_Device_Control_Log_Service) - SEIKO EPSON CORPORATION - C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe
O23 - Service: EPSON Port Communication Service (EPSON_Port_Communication_Service) - SEIKO EPSON CORPORATION - C:\Program Files\epson\portcommunicationservice\PCSVC.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Sentinel Local License Manager (hasplms) - SafeNet Inc. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
O23 - Service: Splashtop Software Updater Service (SSUService) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TabletService - Unknown owner - C:\Genius\ioTablet\TabletService.exe
--
End of file - 14201 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll [2007-03-02 1298024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2013-03-18 330160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-30 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2013-03-18 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2013-03-18 80304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"ioTablet"=C:\Genius\ioTablet\gTabTaskBar.exe [2011-02-25 49152]
"Hard Disk Sentinel"=C:\Program Files\Hard Disk Sentinel\HDSentinel.exe [2013-02-22 4295312]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-05-16 1012000]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2013-06-21 15677728]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2013-06-21 223008]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2013-06-21 2586912]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-10-09 1036288]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-07-03 43816]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2014-01-17 421888]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2014-07-28 3830632]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-07-08 152392]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-30 4086432]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2014-07-28 3830632]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFSplash]
IFSplash.exe 0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2013-06-21 223008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2007-11-06 16855552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-10-09 1036288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2008-05-26 123904]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ASUS WiFi-AP Solo.lnk - C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
Select a coupon.lnk - C:\Program Files\EPSON\TMCommandEmulator\PopupWindow.exe
TM-T88V Utility(Automatic Restore).lnk - C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe
C:\Documents and Settings\Dada\Nabídka Start\Programy\Po spuštění
Dropbox.lnk - C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\wincmd\WINCMD32.EXE"="C:\wincmd\WINCMD32.EXE:*:Enabled:Windows Commander 32 bit internationale Version, Dateimanager-Ersatz fuer Windows"
"C:\Program Files\Canon\DV Messenger\DV Messenger.exe"="C:\Program Files\Canon\DV Messenger\DV Messenger.exe:*:Enabled:Executable"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\WINDOWS\system32\hasplms.exe"="C:\WINDOWS\system32\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE"="C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE:*:Enabled:EPSON TM-T88V Utility Ver.1.40"
"C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe"="C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe:*:Enabled:Printer Network Setting Ver.5"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe"="C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe:*:Enabled:Splashtop® Streamer"
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe"="C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe:*:Enabled:Splashtop® GDI Server"
"C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe"="C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe:*:Enabled:Splashtop® PROXY Server"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=L3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"MSVideo8"=VfWWDM32.dll
"vidc.tscc"=tsccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.divx"=divx.dll
"vidc.div4"=DivXc32f.dll
"vidc.div3"=DivXc32.dll
"vidc.xvid"=xvid.dll
"vidc.mp43"=mpg4c32.dll
"msacm.l3radius"=l3codecp.acm
"msacm.divxa"=divxa32.acm
"msacm.vorbis"=Vorbis.acm
"msacm.a3d"=a3d.dll
"msacm.ogg"=ogg.dll
"msacm.vorbisenc"=vorbisenc.dll
"msacm.ac3filter"=ac3filter.acm
======File associations======
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-07-31 01:51:42 ----D---- C:\Program Files\X Codec Pack
2014-07-31 01:36:02 ----D---- C:\Program Files\Kodek CZ
2014-07-31 01:27:27 ----SHD---- C:\RECYCLER
2014-07-31 01:23:08 ----D---- C:\Program Files\Convert MOV to AVI
2014-07-31 00:06:13 ----D---- C:\Documents and Settings\Dada\Data aplikací\WinRAR
2014-07-30 20:37:47 ----D---- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
2014-07-30 20:37:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-07-30 15:31:06 ----D---- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
2014-07-30 15:30:27 ----D---- C:\WINDOWS\jumpshot.com
2014-07-30 15:30:03 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-07-30 15:30:02 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-07-30 15:30:02 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-07-30 15:30:01 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-07-30 15:30:01 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-07-30 15:30:01 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-07-30 15:30:00 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-07-30 15:30:00 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-07-30 15:29:56 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-07-30 15:29:54 ----A---- C:\WINDOWS\avastSS.scr
2014-07-30 15:26:46 ----D---- C:\Program Files\AVAST Software
2014-07-30 15:00:45 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-30 14:31:01 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-07-30 14:30:01 ----D---- C:\AdwCleaner
2014-07-30 13:29:10 ----D---- C:\rsit
2014-07-30 13:29:10 ----D---- C:\Program Files\trend micro
2014-07-30 13:17:38 ----A---- C:\ComboFix.txt
2014-07-29 11:24:40 ----A---- C:\TDSSKiller.3.0.0.40_29.07.2014_11.24.40_log.txt
2014-07-24 15:19:22 ----D---- C:\Program Files\Hydrogen
2014-07-24 12:45:25 ----D---- C:\TDSSKiller_Quarantine
2014-07-15 10:31:57 ----D---- C:\Program Files\iPod
2014-07-15 10:31:42 ----D---- C:\Program Files\iTunes
2014-07-15 10:31:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
======List of files/folders modified in the last 1 month======
2014-07-31 10:27:09 ----D---- C:\WINDOWS\Prefetch
2014-07-31 10:03:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-07-31 01:53:46 ----D---- C:\WINDOWS\system32
2014-07-31 01:51:42 ----D---- C:\Program Files
2014-07-31 01:36:51 ----HD---- C:\WINDOWS\inf
2014-07-31 01:36:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-07-31 01:36:04 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-31 01:33:36 ----D---- C:\Documents and Settings\Dada\Data aplikací\vlc
2014-07-31 01:21:05 ----A---- C:\WINDOWS\WINCMD.INI
2014-07-31 00:10:00 ----D---- C:\WINDOWS\temp
2014-07-31 00:03:41 ----D---- C:\WINDOWS\system32\drivers
2014-07-31 00:02:03 ----D---- C:\Documents and Settings\Dada\Data aplikací\Dropbox
2014-07-31 00:01:15 ----A---- C:\WINDOWS\RTacDbg.txt
2014-07-30 23:58:47 ----D---- C:\WINDOWS
2014-07-30 23:49:08 ----D---- C:\Program Files\McAfee
2014-07-30 23:43:30 ----D---- C:\WINDOWS\system32\LogFiles
2014-07-30 23:41:00 ----D---- C:\WINDOWS\uninstall
2014-07-30 15:44:08 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-07-30 15:30:12 ----SD---- C:\WINDOWS\Tasks
2014-07-30 15:17:39 ----SD---- C:\WINDOWS\system32\Microsoft
2014-07-30 13:17:42 ----D---- C:\Qoobox
2014-07-30 13:13:17 ----A---- C:\WINDOWS\system.ini
2014-07-30 13:08:19 ----D---- C:\WINDOWS\AppPatch
2014-07-30 13:08:14 ----D---- C:\Program Files\Common Files
2014-07-29 12:25:40 ----D---- C:\WINDOWS\Debug
2014-07-29 12:25:35 ----D---- C:\WINDOWS\Minidump
2014-07-29 12:19:02 ----D---- C:\Program Files\CCleaner
2014-07-29 12:12:29 ----D---- C:\Documents and Settings\Dada\Data aplikací\Adobe
2014-07-29 03:02:07 ----D---- C:\Documents and Settings\Dada\Data aplikací\Autodesk
2014-07-29 02:42:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Autodesk
2014-07-29 02:41:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2014-07-29 02:31:38 ----D---- C:\temp
2014-07-29 02:22:55 ----D---- C:\Program Files\Orienteering Organiser
2014-07-29 02:20:00 ----D---- C:\Program Files\microsoft frontpage
2014-07-29 02:00:48 ----HD---- C:\Program Files\InstallShield Installation Information
2014-07-29 01:58:21 ----SHD---- C:\WINDOWS\Installer
2014-07-29 01:45:49 ----D---- C:\Program Files\Autodesk
2014-07-29 01:34:17 ----D---- C:\Program Files\Common Files\Autodesk Shared
2014-07-29 01:32:37 ----RSD---- C:\WINDOWS\assembly
2014-07-29 01:30:27 ----RSD---- C:\WINDOWS\Fonts
2014-07-29 01:07:24 ----D---- C:\WINDOWS\system32\Macromed
2014-07-29 01:07:24 ----D---- C:\Documents and Settings\Dada\Data aplikací\Macromedia
2014-07-29 01:00:58 ----D---- C:\Program Files\System Explorer
2014-07-28 11:26:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\SystemExplorer
2014-07-24 20:01:20 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-22 17:48:39 ----D---- C:\Program Files\Hard Disk Sentinel
2014-07-15 10:31:56 ----D---- C:\Program Files\Common Files\Apple
2014-07-14 10:12:53 ----AC---- C:\WINDOWS\BRWMARK.INI
2014-07-09 20:11:58 ----D---- C:\WINDOWS\system32\MRT
2014-07-09 20:07:48 ----A---- C:\WINDOWS\system32\MRT.exe
2014-07-09 20:07:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-07-09 13:14:06 ----D---- C:\WINDOWS\system32\drivers\etc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-30 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-30 192352]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-11-03 45968]
R0 SI3132;SiI-3132 SATALink Controller; C:\WINDOWS\system32\DRIVERS\SI3132.sys [2007-10-03 80424]
R0 SiFilter;SATALink driver accelerator; C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys [2007-10-03 19240]
R0 SiRemFil;SATALink External Device Filter; C:\WINDOWS\system32\DRIVERS\SiRemFil.sys [2007-10-03 15400]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-07-30 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-30 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-30 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-07-30 57800]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-04-02 21035]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys []
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-30 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-30 67824]
R2 EPSON_PCS_Parallel_Port_Driver;EPSON PCS Parallel Port Driver; \??\C:\WINDOWS\system32\DRIVERS\pcslpt.sys []
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Program Files\HWiNFO32\HWiNFO32.SYS []
R2 LBeepKE;Logitech Beep Suppression Driver; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2012-09-18 12216]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-10-10 313856]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-06-20 103424]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ioFakDrv;ioVirtual Device; C:\WINDOWS\system32\DRIVERS\ioFakDrv.sys [2010-12-15 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer; C:\WINDOWS\system32\DRIVERS\ioFakMap.sys [2010-12-15 10624]
R3 ioTablet;Tablet Minidriver for ioTablet; C:\WINDOWS\system32\DRIVERS\ioTablet.sys [2011-03-03 34696]
R3 ioTblMap;Mini Mapper for ioCentre; C:\WINDOWS\system32\DRIVERS\ioTblMap.sys [2011-03-03 10632]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-06-21 10973504]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter; C:\WINDOWS\system32\DRIVERS\RTL8187.sys [2008-06-27 332928]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-18 392960]
R3 SjyPkt;SjyPkt; \??\C:\WINDOWS\System32\Drivers\SjyPkt.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 ethukhmy;ethukhmy; C:\WINDOWS\system32\drivers\ethukhmy.sys []
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 ACCSKMD;Canon Camera Storage Device; C:\WINDOWS\system32\DRIVERS\accskmd.sys [2003-05-13 32640]
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 catchme;catchme; \??\C:\DOCUME~1\Dada\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cpuz134;cpuz134; \??\C:\DOCUME~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-07 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-07 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-07 21568]
S3 imhidusb;Immersion's HID USB Driver; C:\WINDOWS\system32\DRIVERS\imhidusb.sys [2001-12-12 30772]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-14 4625408]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2012-09-18 43960]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2012-09-18 39608]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\WINDOWS\system32\DRIVERS\netaapl.sys [2013-07-25 18944]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 Ser2pl;Prolific2 Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys []
S3 slabbus;SPORTident USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\slabbus.sys [2005-06-28 55312]
S3 slabser;SPORTident USB to UART Bridge Controller Drivers; C:\WINDOWS\system32\DRIVERS\slabser.sys [2005-06-28 89808]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TMUSB;EPSON USB Device Driver for TM/BA/EU Printers; C:\WINDOWS\System32\DRIVERS\TMUSBXP.SYS [2012-03-01 49408]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2013-02-12 12928]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2012-12-13 45056]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2012-06-14 11520]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-06-12 43336]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-30 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504]
R2 EPSON_Device_Control_Log_Service;EPSON Device Control Log Service; C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe [2012-11-29 333824]
R2 EPSON_Port_Communication_Service;EPSON Port Communication Service; C:\Program Files\epson\portcommunicationservice\PCSVC.exe [2012-11-29 433152]
R2 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-01-12 1044816]
R2 hasplms;Sentinel Local License Manager; C:\WINDOWS\system32\hasplms.exe [2013-01-11 4466120]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2013-03-18 154032]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [2014-07-23 133696]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2013-06-21 156960]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-05-16 1826592]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SSUService;Splashtop Software Updater Service; C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe [2013-10-09 609056]
R2 TabletService;TabletService; C:\Genius\ioTablet\TabletService.exe [2011-02-25 18944]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-07-08 553288]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-12 133104]
S2 SplashtopRemoteService;Splashtop® Remote Service; C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe [2014-05-15 790880]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-30 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-12 133104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-02 138168]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
Odinstalujte McAfee Security Scan a McAfee SiteAdvisorDame si jeste jeden sken a budem mazat
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
OTL logfile created on: 31.7.2014 11:23:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dada\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,57 Gb Available Physical Memory | 28,56% Memory free
3,85 Gb Paging File | 2,37 Gb Available in Paging File | 61,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 137,24 Gb Free Space | 46,04% Space Free | Partition Type: NTFS
Computer Name: DAN | User Name: Dada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.07.31 10:49:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
PRC - [2014.07.30 15:29:51 | 004,086,432 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.07.30 15:29:51 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.07.28 07:04:04 | 003,830,632 | ---- | M] (Mister Group) -- C:\Program Files\System Explorer\SystemExplorer.exe
PRC - [2014.07.21 23:02:50 | 035,464,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
PRC - [2014.07.15 11:24:50 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014.05.15 14:56:54 | 000,790,880 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
PRC - [2014.05.15 14:56:52 | 003,964,256 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe
PRC - [2014.05.15 14:56:46 | 007,203,168 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe
PRC - [2013.10.09 05:47:54 | 000,609,056 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
PRC - [2013.05.16 16:44:05 | 001,012,000 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013.02.22 11:03:44 | 004,295,312 | ---- | M] (H.D.S. Hungary) -- C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
PRC - [2013.01.11 16:36:24 | 004,466,120 | ---- | M] (SafeNet Inc.) -- C:\WINDOWS\system32\hasplms.exe
PRC - [2012.11.29 19:16:10 | 000,433,152 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe
PRC - [2012.11.29 19:15:20 | 000,333,824 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe
PRC - [2012.11.25 06:13:10 | 000,567,256 | ---- | M] (Mister Group) -- C:\Program Files\System Explorer\service\SystemExplorerService.exe
PRC - [2012.01.12 02:11:57 | 001,044,816 | ---- | M] (Flexera Software, Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2011.03.30 11:19:44 | 000,131,072 | ---- | M] () -- C:\Genius\ioTablet\gTabletTask.exe
PRC - [2011.02.25 12:33:48 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTabTaskBar.exe
PRC - [2011.02.25 12:31:16 | 000,045,056 | ---- | M] () -- C:\Genius\ioTablet\gIoTabletFunMgm.exe
PRC - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\TabletService.exe
PRC - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2006.09.05 20:27:10 | 000,995,328 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe
========== Modules (No Company Name) ==========
MOD - [2014.07.31 11:16:04 | 000,043,008 | ---- | M] () -- c:\Documents and Settings\Dada\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmphc38um.dll
MOD - [2014.07.30 19:46:27 | 002,795,008 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\14073002\algo.dll
MOD - [2014.07.30 15:29:54 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.07.30 15:29:52 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2014.07.21 22:53:38 | 003,610,624 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2014.07.15 11:24:48 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ppgooglenaclpluginchrome.dll
MOD - [2014.07.15 11:24:44 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\pdf.dll
MOD - [2014.07.15 11:24:35 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
MOD - [2014.02.12 21:54:37 | 001,227,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.WorkflowServ#\c5467c14a272823a357b6ea7aec19572\System.WorkflowServices.ni.dll
MOD - [2014.02.12 21:53:13 | 000,369,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\ebbdeb2224cf7f8b4aa7d039516d17bd\System.ServiceModel.Routing.ni.dll
MOD - [2014.02.12 21:53:12 | 001,142,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\5a8617e2c334fde080fbdc73c05fd8b6\System.ServiceModel.Discovery.ni.dll
MOD - [2014.02.12 21:53:09 | 000,082,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\7401d47e8eef61dd2770777964c4e481\System.ServiceModel.Channels.ni.dll
MOD - [2014.02.12 21:52:37 | 001,089,024 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\f67a10b051726dcc0d15c9a0c8668a60\System.ServiceModel.Web.ni.dll
MOD - [2014.02.12 21:49:09 | 001,394,176 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\927a0770a75cedf18eeb9a6dbbe54afd\System.ServiceModel.Activities.ni.dll
MOD - [2014.02.12 21:48:59 | 001,079,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\6769297ceb522c4fe6de2c5e3575812d\System.IdentityModel.ni.dll
MOD - [2014.02.12 21:48:57 | 018,109,952 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a95ac0b02617b9dadbc5f625586b2aac\System.ServiceModel.ni.dll
MOD - [2014.02.12 21:45:44 | 000,221,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\2e3fdae8546832614633495638bef8d0\System.ServiceProcess.ni.dll
MOD - [2014.02.12 21:45:32 | 001,926,144 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web.Services\3f0c8a7233cdd1741c75978c900ed398\System.Web.Services.ni.dll
MOD - [2014.02.12 21:45:13 | 000,787,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\6a5f031a28c774f1163af0715c3a6097\System.EnterpriseServices.ni.dll
MOD - [2014.02.12 21:45:13 | 000,236,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\6a5f031a28c774f1163af0715c3a6097\System.EnterpriseServices.Wrapper.dll
MOD - [2014.02.12 21:45:11 | 000,649,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\fc7255cccb69c45a808b3d7e6abf55c5\System.Transactions.ni.dll
MOD - [2014.02.12 21:45:10 | 001,021,952 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\cd626ecab8e1657628451408aba720cd\System.Runtime.DurableInstancing.ni.dll
MOD - [2014.02.12 21:45:08 | 000,143,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\88aec4231adca9f5a4226c83911c4dad\SMDiagnostics.ni.dll
MOD - [2014.02.12 21:45:07 | 002,659,328 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\be0a1bb51a0d8fb41140c8111ed56d19\System.Runtime.Serialization.ni.dll
MOD - [2014.02.12 21:34:33 | 001,014,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\991c4e11f571a4074b9c4a5841222338\System.Configuration.ni.dll
MOD - [2014.02.12 21:34:30 | 001,667,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\243ff1822abc8282cb8fee37538170b4\System.Drawing.ni.dll
MOD - [2014.02.12 21:34:29 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\850fa7110c7423c324762c1ad3130219\System.Xml.ni.dll
MOD - [2014.02.12 21:34:26 | 006,817,280 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\2c4f9ef6baacb578ab136a5b30ada098\System.Data.ni.dll
MOD - [2014.02.12 21:34:13 | 007,070,720 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\354a5906fd46f4374f86916debf3ebcb\System.Core.ni.dll
MOD - [2014.02.12 21:33:59 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\4c906eb82e6f56aea01b2a7291fab7ea\System.ni.dll
MOD - [2014.02.12 21:33:46 | 014,416,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\4e62d1d9b7dd2c2d14915abb73c22d50\mscorlib.ni.dll
MOD - [2014.02.06 01:52:52 | 000,073,544 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014.02.06 01:52:32 | 001,044,808 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013.10.19 01:55:02 | 025,100,288 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\libcef.dll
MOD - [2011.03.30 11:19:44 | 000,131,072 | ---- | M] () -- C:\Genius\ioTablet\gTabletTask.exe
MOD - [2011.03.24 11:23:50 | 000,019,968 | ---- | M] () -- C:\Genius\ioTablet\gPenMoveFunc.dll
MOD - [2011.03.09 17:24:52 | 000,030,720 | ---- | M] () -- C:\Genius\ioTablet\gfBrowser.dll
MOD - [2011.02.25 12:56:30 | 000,008,192 | ---- | M] () -- C:\Genius\ioTablet\gTabletTaskDll.dll
MOD - [2011.02.25 12:43:12 | 000,016,896 | ---- | M] () -- C:\Genius\ioTablet\gTabletDevMgm.dll
MOD - [2011.02.25 12:41:32 | 000,147,456 | ---- | M] () -- C:\Genius\ioTablet\gTabletXml.dll
MOD - [2011.02.25 12:39:26 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gfMedia.dll
MOD - [2011.02.25 12:38:58 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\gfOffice.dll
MOD - [2011.02.25 12:38:34 | 000,029,184 | ---- | M] () -- C:\Genius\ioTablet\gfSystem.dll
MOD - [2011.02.25 12:37:42 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gAutoScroll.dll
MOD - [2011.02.25 12:37:16 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gDeskMgm.dll
MOD - [2011.02.25 12:36:26 | 000,057,344 | ---- | M] () -- C:\Genius\ioTablet\gTabSwitch.dll
MOD - [2011.02.25 12:36:00 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTaskSwitch.dll
MOD - [2011.02.25 12:35:36 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gVirtualDeviceSimulate.dll
MOD - [2011.02.25 12:35:10 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gZoom.dll
MOD - [2011.02.25 12:33:48 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTabTaskBar.exe
MOD - [2011.02.25 12:32:48 | 000,019,968 | ---- | M] () -- C:\Genius\ioTablet\gTabletHook.dll
MOD - [2011.02.25 12:31:16 | 000,045,056 | ---- | M] () -- C:\Genius\ioTablet\gIoTabletFunMgm.exe
MOD - [2011.02.25 12:30:24 | 000,061,440 | ---- | M] () -- C:\Genius\ioTablet\gSmartSearch.dll
MOD - [2011.02.25 12:29:16 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gVolumnCtrl.dll
MOD - [2011.02.25 12:28:54 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\gfPainter.dll
MOD - [2011.02.25 12:28:36 | 000,025,600 | ---- | M] () -- C:\Genius\ioTablet\gPainterFunc.dll
MOD - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\TabletService.exe
MOD - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
MOD - [2008.04.14 05:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.06.29 19:07:04 | 000,966,765 | ---- | M] () -- C:\Program Files\ASUS WiFi-AP Solo\acAuth.dll
MOD - [2006.06.29 19:07:04 | 000,131,072 | ---- | M] () -- C:\Program Files\ASUS WiFi-AP Solo\EnumDevLib.dll
MOD - [2002.10.05 01:04:26 | 000,092,672 | ---- | M] () -- C:\WINDOWS\system32\vorbis.dll
MOD - [2002.10.05 01:04:18 | 000,021,504 | ---- | M] () -- C:\WINDOWS\system32\ogg.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2014.07.30 15:44:08 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.07.30 15:29:51 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014.05.15 14:56:54 | 000,790,880 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe -- (SplashtopRemoteService)
SRV - [2013.10.09 05:47:54 | 000,609,056 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe -- (SSUService)
SRV - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013.01.11 16:36:24 | 004,466,120 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms)
SRV - [2012.11.29 19:16:10 | 000,433,152 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe -- (EPSON_Port_Communication_Service)
SRV - [2012.11.29 19:15:20 | 000,333,824 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe -- (EPSON_Device_Control_Log_Service)
SRV - [2012.11.25 06:13:10 | 000,567,256 | ---- | M] (Mister Group) [On_Demand | Running] -- C:\Program Files\System Explorer\service\SystemExplorerService.exe -- (SystemExplorerHelpService)
SRV - [2012.01.12 02:11:57 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () [Auto | Running] -- C:\Genius\ioTablet\TabletService.exe -- (TabletService)
SRV - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ser2pl.sys -- (Ser2pl)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | System | Stopped] -- system32\drivers\ethukhmy.sys -- (ethukhmy)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Dada\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP)
DRV - [2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014.07.30 15:29:54 | 000,192,352 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2014.07.30 15:29:54 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.07.30 15:29:54 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2013.07.25 17:53:46 | 000,018,944 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2013.03.07 15:06:46 | 000,608,136 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock)
DRV - [2013.02.19 15:17:28 | 000,376,200 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2012.11.29 19:12:20 | 000,019,592 | ---- | M] (SEIKO EPSON CORPORATION) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pcslpt.sys -- (EPSON_PCS_Parallel_Port_Driver)
DRV - [2012.09.18 11:33:00 | 000,043,960 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2012.09.18 11:33:00 | 000,039,608 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2012.09.18 11:32:56 | 000,012,216 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2012.06.14 11:04:54 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2012.03.01 10:05:30 | 000,049,408 | ---- | M] (Seiko Epson Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TMUSBXP.sys -- (TMUSB)
DRV - [2011.03.03 15:16:38 | 000,034,696 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioTablet.sys -- (ioTablet)
DRV - [2011.03.03 15:16:38 | 000,010,632 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioTblMap.sys -- (ioTblMap)
DRV - [2010.12.15 16:11:46 | 000,021,888 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioFakDrv.sys -- (ioFakDrv)
DRV - [2010.12.15 16:11:46 | 000,010,624 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioFakMap.sys -- (ioFakMap)
DRV - [2009.08.05 22:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009.01.14 23:14:06 | 000,016,872 | ---- | M] (REALiX(tm)) [Kernel | Auto | Running] -- C:\Program Files\HWiNFO32\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2008.06.27 09:39:42 | 000,332,928 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8187.sys -- (RTLWUSB)
DRV - [2007.11.14 18:14:02 | 004,625,408 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007.10.03 22:55:36 | 000,019,240 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SiWinAcc.sys -- (SiFilter)
DRV - [2007.10.03 22:55:28 | 000,015,400 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SiRemFil.sys -- (SiRemFil)
DRV - [2007.10.03 22:55:08 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SI3132.sys -- (SI3132)
DRV - [2006.06.23 11:35:08 | 000,013,532 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SjyPkt.sys -- (SjyPkt)
DRV - [2006.03.22 14:24:02 | 000,018,944 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.03.22 14:24:00 | 000,052,736 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.03.18 11:18:58 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2005.06.28 15:14:08 | 000,089,808 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabser.sys -- (slabser)
DRV - [2005.06.28 15:14:08 | 000,055,312 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabbus.sys -- (slabbus)
DRV - [2004.08.13 10:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.08.04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2003.05.13 20:50:06 | 000,032,640 | ---- | M] (Canon Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\accskmd.sys -- (ACCSKMD)
DRV - [2001.12.12 12:37:56 | 000,030,772 | ---- | M] (Immersion Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ImHidUsb.sys -- (imhidusb)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67768793-07BA-36BA-9EFB-790C55D978AC}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes,Backup.Old.DefaultScope = {89A56908-AB2E-42F5-BBBE-82C4D50C333E}
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{185A3F5E-EACF-566C-F15A-4F1F133C26DD}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{4E61DF84-5A49-49DC-951B-ED2602092BA3}: "URL" = http://www.mysearchresults.com/search?c ... earchTerms}
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{67768793-07BA-36BA-9EFB-790C55D978AC}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{68002867-4835-5B25-63AF-248E3B6EB9BF}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{89A56908-AB2E-42F5-BBBE-82C4D50C333E}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{B4C006FA-35AF-4F41-94F0-7413840E9068}: "URL" = http://search.seznam.cz/searchScreen?w= ... rms}&mod=f
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin: C:\Program Files\Java\jre6\bin\dtplugin\npDeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.07.30 15:29:55 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Error reading preferences file
CHR - Extension: Bejeweled = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm\2_0\
CHR - Extension: Angry Birds = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Dokumenty Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Disk Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_2\
CHR - Extension: VyhledávánĂ Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: AutoCAD 360 = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln\2.0_0\
CHR - Extension: avast! Online Security = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: Isoball 3 = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.4.0_0\
CHR - Extension: Graph.tk = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nkhkaamdeplibnmodcgodlkghphdbahk\0.0.1.0_0\
CHR - Extension: Peněženka Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Weather Underground = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej\1.6_0\
CHR - Extension: Gmail = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2014.07.09 13:14:06 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Hard Disk Sentinel] C:\Program Files\Hard Disk Sentinel\HDSentinel.exe (H.D.S. Hungary)
O4 - HKLM..\Run: [ioTablet] C:\Genius\ioTablet\gTabTaskBar.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SystemExplorerAutoStart] C:\Program Files\System Explorer\SystemExplorer.exe (Mister Group)
O4 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005..\Run: [SystemExplorerAutoStart] C:\Program Files\System Explorer\SystemExplorer.exe (Mister Group)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ASUS WiFi-AP Solo.lnk = C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe (ASUSTek Computer Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Select a coupon.lnk = C:\Program Files\EPSON\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\TM-T88V Utility(Automatic Restore).lnk = C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe (SEIKO EPSON CORPORATION)
O4 - Startup: C:\Documents and Settings\Dada\Nabídka Start\Programy\Po spuštění\Dropbox.lnk = C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..Trusted Domains: facebook.com ([www] https in Důvěryhodné servery)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Reg Error: Key error.)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/Shar ... vSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} http://download.seznam.cz/listicka/toolbar2007.cab (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/Shar ... /cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 8277405093 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_34)
O16 - DPF: {CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_43)
O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.55.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{85ABBE72-1CC2-4965-908D-6E759C124596}: DhcpNameServer = 192.168.218.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{903DB9BA-4A24-48E5-92A8-4487DE99E4AA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E330F0F3-F8C9-4610-B6F8-73D7377CE7CF}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Dada\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dada\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.01.31 15:46:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.a3d - C:\WINDOWS\System32\a3d.dll (Sensaura Ltd)
Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.divxa - C:\WINDOWS\System32\divxa32.acm (build Pinky.cz)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3radius - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ogg - C:\WINDOWS\System32\ogg.dll ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.vorbisenc - C:\WINDOWS\System32\vorbisenc.dll ()
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - C:\WINDOWS\System32\divxc32.dll (build Pinky.cz)
Drivers32: vidc.div4 - C:\WINDOWS\System32\divxc32f.dll (Pinky.cz)
Drivers32: vidc.divx - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvid.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.07.31 11:22:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.07.31 10:48:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
[2014.07.31 01:51:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Nabídka Start\Programy\X Codec Pack 2.6.6
[2014.07.31 01:51:42 | 000,000,000 | ---D | C] -- C:\Program Files\X Codec Pack
[2014.07.31 01:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kodek CZ
[2014.07.31 01:36:02 | 000,000,000 | ---D | C] -- C:\Program Files\Kodek CZ
[2014.07.31 01:27:27 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014.07.31 01:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Convert MOV to AVI
[2014.07.31 01:23:08 | 000,000,000 | ---D | C] -- C:\Program Files\Convert MOV to AVI
[2014.07.31 00:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\WinRAR
[2014.07.30 20:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
[2014.07.30 20:37:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.07.30 15:31:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.07.30 15:30:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\jumpshot.com
[2014.07.30 15:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
[2014.07.30 15:30:03 | 000,057,800 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014.07.30 15:30:02 | 000,779,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.07.30 15:30:01 | 000,414,520 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014.07.30 15:30:01 | 000,067,824 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014.07.30 15:30:00 | 000,055,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2014.07.30 15:29:56 | 000,276,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014.07.30 15:29:54 | 000,043,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.07.30 15:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014.07.30 15:05:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Dada\Recent
[2014.07.30 14:31:01 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\System32\sqlite3.dll
[2014.07.30 14:30:01 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.07.30 13:29:10 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.07.30 13:29:10 | 000,000,000 | ---D | C] -- C:\rsit
[2014.07.29 11:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2014.07.29 07:01:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Apple
[2014.07.29 03:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\Avast AntiVirus 6.0.11 + Serial Keys
[2014.07.29 01:45:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\backburner
[2014.07.24 15:20:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\.hydrogen
[2014.07.24 15:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Hydrogen
[2014.07.24 15:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Hydrogen
[2014.07.24 12:45:25 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2014.07.15 10:32:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\iTunes
[2014.07.15 10:31:57 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014.07.15 10:31:42 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014.07.15 10:31:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2014.07.14 00:06:26 | 000,368,376 | ---- | C] (MPC-HC Team) -- C:\WINDOWS\System32\cdxareader.ax
[2006.12.02 07:31:08 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data aplikací\vcredist_x86.exe
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014.07.31 11:27:39 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.07.31 11:21:00 | 000,000,360 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.07.31 11:13:30 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.07.31 11:12:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.07.31 11:12:38 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys
[2014.07.31 11:03:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.07.31 10:49:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
[2014.07.31 10:41:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.07.31 01:55:00 | 000,012,748 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2014.07.31 01:53:57 | 000,000,844 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Media Player Classic - HC.lnk
[2014.07.31 01:32:04 | 000,101,376 | ---- | M] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.07.31 01:23:10 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Convert MOV to AVI.lnk
[2014.07.31 01:21:05 | 000,001,481 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2014.07.30 21:55:33 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Microsoft Office Excel 2007.lnk
[2014.07.30 15:49:05 | 000,001,844 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.07.30 15:44:08 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014.07.30 15:44:08 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014.07.30 15:30:22 | 000,001,764 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.07.30 15:29:54 | 000,276,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014.07.30 15:29:54 | 000,192,352 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2014.07.30 15:29:54 | 000,049,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.07.30 15:29:54 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.07.30 15:29:54 | 000,024,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.07.30 15:04:51 | 003,907,584 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014.07.30 15:01:00 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.07.30 14:27:23 | 001,365,551 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\adwcleaner_3.301.exe
[2014.07.30 01:42:03 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Microsoft Office Word 2007.lnk
[2014.07.29 15:20:01 | 000,251,393 | -H-- | M] () -- C:\TREEINFO.WC
[2014.07.29 15:14:59 | 000,000,272 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151457.reg
[2014.07.29 15:14:39 | 000,000,968 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151437.reg
[2014.07.29 15:14:09 | 000,101,458 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151357.reg
[2014.07.29 12:19:08 | 000,000,713 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2014.07.29 07:01:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2014.07.29 01:00:55 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\System Explorer.lnk
[2014.07.27 22:05:53 | 000,003,140 | -HS- | M] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2014.07.27 22:05:00 | 000,002,579 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Corel PHOTO-PAINT X4.lnk
[2014.07.26 23:39:56 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2014.07.26 21:49:33 | 000,001,037 | ---- | M] () -- C:\Documents and Settings\Dada\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
[2014.07.26 21:48:53 | 000,001,013 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Dropbox.lnk
[2014.07.24 15:19:46 | 000,001,587 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Hydrogen.lnk
[2014.07.15 11:20:51 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\CorelDRAW X4.lnk
[2014.07.15 10:32:45 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\iTunes.lnk
[2014.07.14 10:12:53 | 000,000,423 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI
[2014.07.14 00:06:26 | 000,368,376 | ---- | M] (MPC-HC Team) -- C:\WINDOWS\System32\cdxareader.ax
[2014.07.10 12:37:18 | 000,081,300 | ---- | M] () -- C:\WINDOWS\FontData.fdb
[2014.07.09 13:14:06 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.07.31 10:54:27 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.07.31 01:53:57 | 000,000,844 | ---- | C] () -- C:\Documents and Settings\Dada\Plocha\Media Player Classic - HC.lnk
[2014.07.31 01:23:10 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Convert MOV to AVI.lnk
[2014.07.30 15:30:22 | 000,001,764 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.07.30 15:30:12 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.07.30 15:30:02 | 000,192,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.07.30 15:30:01 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.07.30 15:30:00 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.07.30 15:00:45 | 003,907,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014.07.30 14:27:16 | 001,365,551 | ---- | C] () -- C:\Documents and Settings\Dada\Plocha\adwcleaner_3.301.exe
[2014.07.29 15:14:58 | 000,000,272 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151457.reg
[2014.07.29 15:14:38 | 000,000,968 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151437.reg
[2014.07.29 15:14:02 | 000,101,458 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151357.reg
[2014.07.24 15:19:46 | 000,001,587 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Hydrogen.lnk
[2014.07.15 10:32:45 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\iTunes.lnk
[2014.06.25 00:13:07 | 000,000,018 | ---- | C] () -- C:\WINDOWS\LEBALKS5.INI
[2014.06.02 15:04:36 | 000,000,273 | ---- | C] () -- C:\WINDOWS\System32\EA5LMTMT88V.dat
[2013.07.08 12:52:56 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.07.08 12:52:55 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.07.08 12:52:55 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.07.08 12:48:20 | 002,289,288 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012.12.28 21:22:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\gTabletTaskDll.dll
[2012.01.12 22:29:10 | 003,179,142 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-3612128790-3562664508-856553003-1005-0.dat
[2012.01.12 03:25:30 | 000,459,158 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2012.01.12 02:13:08 | 000,000,147 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\Microsoft.SqlServer.Compact.351.32.bc
[2011.11.03 00:34:39 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\$_hpcst$.hpc
[2011.07.26 21:32:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Dada\.gtk-bookmarks
[2011.07.26 16:38:10 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Dada\.gtkrc-2.0
[2011.03.22 15:29:08 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\keyfile3.drm
[2011.01.24 00:05:48 | 000,000,555 | ---- | C] () -- C:\Documents and Settings\Dada\espeakedit.ini
[2010.05.05 20:22:11 | 000,000,179 | ---- | C] () -- C:\Documents and Settings\Dada\.jupload.properties
[2009.12.26 23:48:16 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Dada\Data aplikací\$_hpcst$.hpc
[2009.11.18 00:10:36 | 000,003,140 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2009.11.18 00:10:36 | 000,000,008 | RHS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\2EAB843AB8.sys
[2008.10.18 23:21:38 | 000,449,810 | ---- | C] () -- C:\Documents and Settings\Dada\.fonts.cache-1
[2008.05.05 22:34:10 | 000,000,013 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ÄĐ3113.sys
[2008.02.14 22:01:06 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.01.02 18:03:26 | 000,101,376 | ---- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.12.24 21:35:33 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\fusioncache.dat
========== ZeroAccess Check ==========
[2008.01.31 09:50:14 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 05:21:55 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 05:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2014.07.15 10:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013.12.20 01:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ashampoo
[2014.07.29 02:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2014.03.30 02:24:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2014.06.25 01:11:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CAM Development
[2014.06.02 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2013.07.11 23:02:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SecTaskMan
[2014.06.16 01:20:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Splashtop
[2014.07.28 11:26:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SystemExplorer
[2014.06.07 00:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2013.01.27 23:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Western Digital
[2011.12.24 21:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012.06.13 20:33:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{6AD8E59C-250C-4201-B5BA-56ADEF76FF46}
[2013.12.20 01:08:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Ashampoo
[2014.07.29 03:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Autodesk
[2014.07.30 15:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.07.31 11:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Dropbox
[2014.06.03 23:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\EPSON
[2012.10.01 01:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\ESET
[2008.05.06 19:22:08 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Dada\Data aplikací\FVSTemp
[2007.12.28 22:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Leadertech
[2014.07.31 11:22:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.06.02 15:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Orienteering Organiser
[2013.11.07 07:23:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Splashtop
[2013.07.24 23:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\SportSoftware
[2009.10.11 21:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Desktop Search
[2009.10.11 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Search
[2012.05.29 21:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Xilisoft
========== Purity Check ==========
========== Custom Scans ==========
< >
[2008.01.31 15:49:23 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2008.01.31 16:33:11 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.07.12 21:44:05 | 000,000,932 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2009.07.12 21:44:06 | 000,000,936 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2012.04.01 11:35:31 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013.12.26 04:27:26 | 000,000,284 | ---- | C] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2014.03.10 00:05:01 | 000,000,214 | ---- | C] () -- C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.03.10 00:05:03 | 000,000,220 | ---- | C] () -- C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.07.30 15:30:12 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
< >
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 23:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=ACCF5A9A1FFAA490F33DBA1C632B95E1 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[278 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\DRVSTORE\*.tmp files -> C:\WINDOWS\system32\DRVSTORE\*.tmp -> ]
[1 C:\WINDOWS\twain_32\*.tmp files -> C:\WINDOWS\twain_32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.07.29 12:12:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Adobe
[2014.04.05 02:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Apple Computer
[2013.12.20 01:08:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Ashampoo
[2014.07.29 03:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Autodesk
[2014.07.30 15:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.04.22 22:22:14 | 000,000,000 | R--D | M] -- C:\Documents and Settings\Dada\Data aplikací\Brother
[2010.07.09 23:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Corel
[2014.07.31 11:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Dropbox
[2014.06.03 23:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\EPSON
[2012.10.01 01:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\ESET
[2008.05.06 19:22:08 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Dada\Data aplikací\FVSTemp
[2013.01.14 18:01:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Google
[2007.12.26 01:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Help
[2007.12.28 22:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Leadertech
[2013.07.07 22:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Logitech
[2014.07.29 01:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Macromedia
[2014.07.30 20:37:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
[2013.02.24 22:41:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Dada\Data aplikací\Microsoft
[2014.07.31 11:22:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.06.07 11:46:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\NVIDIA
[2014.06.02 15:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Orienteering Organiser
[2008.09.28 22:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\PSpad
[2013.11.07 07:23:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Splashtop
[2013.07.24 23:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\SportSoftware
[2009.06.04 21:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Sun
[2014.07.31 01:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\vlc
[2009.10.11 21:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Desktop Search
[2009.10.11 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Search
[2014.07.31 00:06:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\WinRAR
[2012.05.29 21:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Xilisoft
< %APPDATA%\*.exe /s >
[2014.07.21 23:02:50 | 035,464,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
[2014.07.21 23:06:00 | 000,262,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\DropboxUninstaller.exe
[2014.07.21 23:02:54 | 000,280,640 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\DropboxUpdateHelper.exe
[2012.08.25 01:15:30 | 005,163,984 | R--- | M] (Western Digital, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Microsoft\Installer\{094D3055-1F1D-4221-B288-4DD0BE529794}\icon.exe
[2013.07.07 22:17:45 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2014.04.22 18:59:16 | 000,145,408 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Sun\Java\jre1.7.0_55\lzma.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008.01.31 16:38:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.01.31 16:38:55 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.01.31 16:38:55 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
[2014.07.30 15:29:54 | 000,024,184 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswHwid.sys
[2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswMonFlt.sys
[2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswRdr.sys
[2014.07.30 15:29:54 | 000,049,944 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswRvrt.sys
[2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSnx.sys
[2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswsp.sys
[2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswTdi.sys
[2014.07.30 15:29:54 | 000,192,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswVmm.sys
< %systemroot%\system32\*.* /3 >
[2014.07.30 15:29:54 | 000,276,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\aswBoot.exe
[2014.07.30 15:44:08 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2014.07.30 15:44:08 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2014.07.30 15:04:51 | 003,907,584 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2014.07.31 01:55:00 | 000,012,748 | ---- | M] () -- C:\WINDOWS\system32\nvAppTimestamps
[2014.07.30 15:01:00 | 000,012,598 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"SystemExplorerAutoStart" = "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY -- [2014.07.28 07:04:04 | 003,830,632 | ---- | M] (Mister Group)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.07.31 11:27:39 | 000,000,512 | ---- | M] () MD5=661190C86A0D9FE006AF83A322DE6F2E -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2001.08.14 19:31:08 | 000,030,054 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Autodesk\Inventor Fusion 2012\Design Data\surfaces\Cracks.bmp
[2001.08.14 19:31:08 | 000,030,054 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Inventor Server\Textures\surfaces\Cracks.bmp
[2005.03.08 11:30:56 | 000,092,827 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Bumpmap\Cracks.cpt
[2005.03.08 11:30:58 | 000,016,068 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Canvas\cracks2c.pcx
[2005.03.08 11:31:08 | 000,010,560 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Tiles\CRACKS2M.CPT
[1999.03.28 13:04:50 | 000,092,827 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Bumpmap\Cracks.cpt
[1997.02.27 11:28:24 | 000,016,068 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Canvas\cracks2c.pcx
[1999.03.28 12:29:12 | 000,010,560 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Tiles\CRACKS2M.CPT
< *keygen* /s >
< *AntiWPA* /s >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dada\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,57 Gb Available Physical Memory | 28,56% Memory free
3,85 Gb Paging File | 2,37 Gb Available in Paging File | 61,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 137,24 Gb Free Space | 46,04% Space Free | Partition Type: NTFS
Computer Name: DAN | User Name: Dada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.07.31 10:49:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
PRC - [2014.07.30 15:29:51 | 004,086,432 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.07.30 15:29:51 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.07.28 07:04:04 | 003,830,632 | ---- | M] (Mister Group) -- C:\Program Files\System Explorer\SystemExplorer.exe
PRC - [2014.07.21 23:02:50 | 035,464,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
PRC - [2014.07.15 11:24:50 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014.05.15 14:56:54 | 000,790,880 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
PRC - [2014.05.15 14:56:52 | 003,964,256 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe
PRC - [2014.05.15 14:56:46 | 007,203,168 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe
PRC - [2013.10.09 05:47:54 | 000,609,056 | ---- | M] (Splashtop Inc.) -- C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
PRC - [2013.05.16 16:44:05 | 001,012,000 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013.02.22 11:03:44 | 004,295,312 | ---- | M] (H.D.S. Hungary) -- C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
PRC - [2013.01.11 16:36:24 | 004,466,120 | ---- | M] (SafeNet Inc.) -- C:\WINDOWS\system32\hasplms.exe
PRC - [2012.11.29 19:16:10 | 000,433,152 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe
PRC - [2012.11.29 19:15:20 | 000,333,824 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe
PRC - [2012.11.25 06:13:10 | 000,567,256 | ---- | M] (Mister Group) -- C:\Program Files\System Explorer\service\SystemExplorerService.exe
PRC - [2012.01.12 02:11:57 | 001,044,816 | ---- | M] (Flexera Software, Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2011.03.30 11:19:44 | 000,131,072 | ---- | M] () -- C:\Genius\ioTablet\gTabletTask.exe
PRC - [2011.02.25 12:33:48 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTabTaskBar.exe
PRC - [2011.02.25 12:31:16 | 000,045,056 | ---- | M] () -- C:\Genius\ioTablet\gIoTabletFunMgm.exe
PRC - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\TabletService.exe
PRC - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2006.09.05 20:27:10 | 000,995,328 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe
========== Modules (No Company Name) ==========
MOD - [2014.07.31 11:16:04 | 000,043,008 | ---- | M] () -- c:\Documents and Settings\Dada\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmphc38um.dll
MOD - [2014.07.30 19:46:27 | 002,795,008 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\14073002\algo.dll
MOD - [2014.07.30 15:29:54 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.07.30 15:29:52 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2014.07.21 22:53:38 | 003,610,624 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2014.07.15 11:24:48 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ppgooglenaclpluginchrome.dll
MOD - [2014.07.15 11:24:44 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\pdf.dll
MOD - [2014.07.15 11:24:35 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
MOD - [2014.02.12 21:54:37 | 001,227,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.WorkflowServ#\c5467c14a272823a357b6ea7aec19572\System.WorkflowServices.ni.dll
MOD - [2014.02.12 21:53:13 | 000,369,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\ebbdeb2224cf7f8b4aa7d039516d17bd\System.ServiceModel.Routing.ni.dll
MOD - [2014.02.12 21:53:12 | 001,142,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\5a8617e2c334fde080fbdc73c05fd8b6\System.ServiceModel.Discovery.ni.dll
MOD - [2014.02.12 21:53:09 | 000,082,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\7401d47e8eef61dd2770777964c4e481\System.ServiceModel.Channels.ni.dll
MOD - [2014.02.12 21:52:37 | 001,089,024 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\f67a10b051726dcc0d15c9a0c8668a60\System.ServiceModel.Web.ni.dll
MOD - [2014.02.12 21:49:09 | 001,394,176 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\927a0770a75cedf18eeb9a6dbbe54afd\System.ServiceModel.Activities.ni.dll
MOD - [2014.02.12 21:48:59 | 001,079,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\6769297ceb522c4fe6de2c5e3575812d\System.IdentityModel.ni.dll
MOD - [2014.02.12 21:48:57 | 018,109,952 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a95ac0b02617b9dadbc5f625586b2aac\System.ServiceModel.ni.dll
MOD - [2014.02.12 21:45:44 | 000,221,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\2e3fdae8546832614633495638bef8d0\System.ServiceProcess.ni.dll
MOD - [2014.02.12 21:45:32 | 001,926,144 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web.Services\3f0c8a7233cdd1741c75978c900ed398\System.Web.Services.ni.dll
MOD - [2014.02.12 21:45:13 | 000,787,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\6a5f031a28c774f1163af0715c3a6097\System.EnterpriseServices.ni.dll
MOD - [2014.02.12 21:45:13 | 000,236,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\6a5f031a28c774f1163af0715c3a6097\System.EnterpriseServices.Wrapper.dll
MOD - [2014.02.12 21:45:11 | 000,649,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\fc7255cccb69c45a808b3d7e6abf55c5\System.Transactions.ni.dll
MOD - [2014.02.12 21:45:10 | 001,021,952 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\cd626ecab8e1657628451408aba720cd\System.Runtime.DurableInstancing.ni.dll
MOD - [2014.02.12 21:45:08 | 000,143,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\88aec4231adca9f5a4226c83911c4dad\SMDiagnostics.ni.dll
MOD - [2014.02.12 21:45:07 | 002,659,328 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\be0a1bb51a0d8fb41140c8111ed56d19\System.Runtime.Serialization.ni.dll
MOD - [2014.02.12 21:34:33 | 001,014,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\991c4e11f571a4074b9c4a5841222338\System.Configuration.ni.dll
MOD - [2014.02.12 21:34:30 | 001,667,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\243ff1822abc8282cb8fee37538170b4\System.Drawing.ni.dll
MOD - [2014.02.12 21:34:29 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\850fa7110c7423c324762c1ad3130219\System.Xml.ni.dll
MOD - [2014.02.12 21:34:26 | 006,817,280 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\2c4f9ef6baacb578ab136a5b30ada098\System.Data.ni.dll
MOD - [2014.02.12 21:34:13 | 007,070,720 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\354a5906fd46f4374f86916debf3ebcb\System.Core.ni.dll
MOD - [2014.02.12 21:33:59 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\4c906eb82e6f56aea01b2a7291fab7ea\System.ni.dll
MOD - [2014.02.12 21:33:46 | 014,416,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\4e62d1d9b7dd2c2d14915abb73c22d50\mscorlib.ni.dll
MOD - [2014.02.06 01:52:52 | 000,073,544 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014.02.06 01:52:32 | 001,044,808 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013.10.19 01:55:02 | 025,100,288 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\libcef.dll
MOD - [2011.03.30 11:19:44 | 000,131,072 | ---- | M] () -- C:\Genius\ioTablet\gTabletTask.exe
MOD - [2011.03.24 11:23:50 | 000,019,968 | ---- | M] () -- C:\Genius\ioTablet\gPenMoveFunc.dll
MOD - [2011.03.09 17:24:52 | 000,030,720 | ---- | M] () -- C:\Genius\ioTablet\gfBrowser.dll
MOD - [2011.02.25 12:56:30 | 000,008,192 | ---- | M] () -- C:\Genius\ioTablet\gTabletTaskDll.dll
MOD - [2011.02.25 12:43:12 | 000,016,896 | ---- | M] () -- C:\Genius\ioTablet\gTabletDevMgm.dll
MOD - [2011.02.25 12:41:32 | 000,147,456 | ---- | M] () -- C:\Genius\ioTablet\gTabletXml.dll
MOD - [2011.02.25 12:39:26 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gfMedia.dll
MOD - [2011.02.25 12:38:58 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\gfOffice.dll
MOD - [2011.02.25 12:38:34 | 000,029,184 | ---- | M] () -- C:\Genius\ioTablet\gfSystem.dll
MOD - [2011.02.25 12:37:42 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gAutoScroll.dll
MOD - [2011.02.25 12:37:16 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gDeskMgm.dll
MOD - [2011.02.25 12:36:26 | 000,057,344 | ---- | M] () -- C:\Genius\ioTablet\gTabSwitch.dll
MOD - [2011.02.25 12:36:00 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTaskSwitch.dll
MOD - [2011.02.25 12:35:36 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gVirtualDeviceSimulate.dll
MOD - [2011.02.25 12:35:10 | 000,065,536 | ---- | M] () -- C:\Genius\ioTablet\gZoom.dll
MOD - [2011.02.25 12:33:48 | 000,049,152 | ---- | M] () -- C:\Genius\ioTablet\gTabTaskBar.exe
MOD - [2011.02.25 12:32:48 | 000,019,968 | ---- | M] () -- C:\Genius\ioTablet\gTabletHook.dll
MOD - [2011.02.25 12:31:16 | 000,045,056 | ---- | M] () -- C:\Genius\ioTablet\gIoTabletFunMgm.exe
MOD - [2011.02.25 12:30:24 | 000,061,440 | ---- | M] () -- C:\Genius\ioTablet\gSmartSearch.dll
MOD - [2011.02.25 12:29:16 | 000,053,248 | ---- | M] () -- C:\Genius\ioTablet\gVolumnCtrl.dll
MOD - [2011.02.25 12:28:54 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\gfPainter.dll
MOD - [2011.02.25 12:28:36 | 000,025,600 | ---- | M] () -- C:\Genius\ioTablet\gPainterFunc.dll
MOD - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () -- C:\Genius\ioTablet\TabletService.exe
MOD - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
MOD - [2008.04.14 05:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.06.29 19:07:04 | 000,966,765 | ---- | M] () -- C:\Program Files\ASUS WiFi-AP Solo\acAuth.dll
MOD - [2006.06.29 19:07:04 | 000,131,072 | ---- | M] () -- C:\Program Files\ASUS WiFi-AP Solo\EnumDevLib.dll
MOD - [2002.10.05 01:04:26 | 000,092,672 | ---- | M] () -- C:\WINDOWS\system32\vorbis.dll
MOD - [2002.10.05 01:04:18 | 000,021,504 | ---- | M] () -- C:\WINDOWS\system32\ogg.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2014.07.30 15:44:08 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.07.30 15:29:51 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014.05.15 14:56:54 | 000,790,880 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe -- (SplashtopRemoteService)
SRV - [2013.10.09 05:47:54 | 000,609,056 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe -- (SSUService)
SRV - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013.01.11 16:36:24 | 004,466,120 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms)
SRV - [2012.11.29 19:16:10 | 000,433,152 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe -- (EPSON_Port_Communication_Service)
SRV - [2012.11.29 19:15:20 | 000,333,824 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe -- (EPSON_Device_Control_Log_Service)
SRV - [2012.11.25 06:13:10 | 000,567,256 | ---- | M] (Mister Group) [On_Demand | Running] -- C:\Program Files\System Explorer\service\SystemExplorerService.exe -- (SystemExplorerHelpService)
SRV - [2012.01.12 02:11:57 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011.02.25 12:28:20 | 000,018,944 | ---- | M] () [Auto | Running] -- C:\Genius\ioTablet\TabletService.exe -- (TabletService)
SRV - [2011.02.02 15:08:16 | 000,018,656 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ser2pl.sys -- (Ser2pl)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | System | Stopped] -- system32\drivers\ethukhmy.sys -- (ethukhmy)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Dada\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP)
DRV - [2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014.07.30 15:29:54 | 000,192,352 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2014.07.30 15:29:54 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.07.30 15:29:54 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2013.07.25 17:53:46 | 000,018,944 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2013.03.07 15:06:46 | 000,608,136 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock)
DRV - [2013.02.19 15:17:28 | 000,376,200 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2012.11.29 19:12:20 | 000,019,592 | ---- | M] (SEIKO EPSON CORPORATION) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pcslpt.sys -- (EPSON_PCS_Parallel_Port_Driver)
DRV - [2012.09.18 11:33:00 | 000,043,960 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2012.09.18 11:33:00 | 000,039,608 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2012.09.18 11:32:56 | 000,012,216 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2012.06.14 11:04:54 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2012.03.01 10:05:30 | 000,049,408 | ---- | M] (Seiko Epson Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TMUSBXP.sys -- (TMUSB)
DRV - [2011.03.03 15:16:38 | 000,034,696 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioTablet.sys -- (ioTablet)
DRV - [2011.03.03 15:16:38 | 000,010,632 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioTblMap.sys -- (ioTblMap)
DRV - [2010.12.15 16:11:46 | 000,021,888 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioFakDrv.sys -- (ioFakDrv)
DRV - [2010.12.15 16:11:46 | 000,010,624 | ---- | M] (KYE System Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ioFakMap.sys -- (ioFakMap)
DRV - [2009.08.05 22:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009.01.14 23:14:06 | 000,016,872 | ---- | M] (REALiX(tm)) [Kernel | Auto | Running] -- C:\Program Files\HWiNFO32\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2008.06.27 09:39:42 | 000,332,928 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8187.sys -- (RTLWUSB)
DRV - [2007.11.14 18:14:02 | 004,625,408 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007.10.03 22:55:36 | 000,019,240 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SiWinAcc.sys -- (SiFilter)
DRV - [2007.10.03 22:55:28 | 000,015,400 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SiRemFil.sys -- (SiRemFil)
DRV - [2007.10.03 22:55:08 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SI3132.sys -- (SI3132)
DRV - [2006.06.23 11:35:08 | 000,013,532 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SjyPkt.sys -- (SjyPkt)
DRV - [2006.03.22 14:24:02 | 000,018,944 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.03.22 14:24:00 | 000,052,736 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.03.18 11:18:58 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2005.06.28 15:14:08 | 000,089,808 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabser.sys -- (slabser)
DRV - [2005.06.28 15:14:08 | 000,055,312 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabbus.sys -- (slabbus)
DRV - [2004.08.13 10:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.08.04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2003.05.13 20:50:06 | 000,032,640 | ---- | M] (Canon Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\accskmd.sys -- (ACCSKMD)
DRV - [2001.12.12 12:37:56 | 000,030,772 | ---- | M] (Immersion Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ImHidUsb.sys -- (imhidusb)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67768793-07BA-36BA-9EFB-790C55D978AC}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes,Backup.Old.DefaultScope = {89A56908-AB2E-42F5-BBBE-82C4D50C333E}
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{185A3F5E-EACF-566C-F15A-4F1F133C26DD}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{4E61DF84-5A49-49DC-951B-ED2602092BA3}: "URL" = http://www.mysearchresults.com/search?c ... earchTerms}
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{67768793-07BA-36BA-9EFB-790C55D978AC}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{68002867-4835-5B25-63AF-248E3B6EB9BF}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{89A56908-AB2E-42F5-BBBE-82C4D50C333E}: "URL" = http://www.google.com/search?q={searchT ... 1I7_____en
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{B4C006FA-35AF-4F41-94F0-7413840E9068}: "URL" = http://search.seznam.cz/searchScreen?w= ... rms}&mod=f
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin: C:\Program Files\Java\jre6\bin\dtplugin\npDeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.07.30 15:29:55 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Error reading preferences file
CHR - Extension: Bejeweled = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm\2_0\
CHR - Extension: Angry Birds = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Dokumenty Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Disk Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_2\
CHR - Extension: VyhledávánĂ Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: AutoCAD 360 = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln\2.0_0\
CHR - Extension: avast! Online Security = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: Isoball 3 = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.4.0_0\
CHR - Extension: Graph.tk = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nkhkaamdeplibnmodcgodlkghphdbahk\0.0.1.0_0\
CHR - Extension: Peněženka Google = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Weather Underground = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej\1.6_0\
CHR - Extension: Gmail = C:\Documents and Settings\Dada\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2014.07.09 13:14:06 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Hard Disk Sentinel] C:\Program Files\Hard Disk Sentinel\HDSentinel.exe (H.D.S. Hungary)
O4 - HKLM..\Run: [ioTablet] C:\Genius\ioTablet\gTabTaskBar.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SystemExplorerAutoStart] C:\Program Files\System Explorer\SystemExplorer.exe (Mister Group)
O4 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005..\Run: [SystemExplorerAutoStart] C:\Program Files\System Explorer\SystemExplorer.exe (Mister Group)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ASUS WiFi-AP Solo.lnk = C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe (ASUSTek Computer Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Select a coupon.lnk = C:\Program Files\EPSON\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\TM-T88V Utility(Automatic Restore).lnk = C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe (SEIKO EPSON CORPORATION)
O4 - Startup: C:\Documents and Settings\Dada\Nabídka Start\Programy\Po spuštění\Dropbox.lnk = C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3612128790-3562664508-856553003-1026\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..Trusted Domains: facebook.com ([www] https in Důvěryhodné servery)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Reg Error: Key error.)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/Shar ... vSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} http://download.seznam.cz/listicka/toolbar2007.cab (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/Shar ... /cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 8277405093 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_34)
O16 - DPF: {CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_43)
O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.55.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{85ABBE72-1CC2-4965-908D-6E759C124596}: DhcpNameServer = 192.168.218.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{903DB9BA-4A24-48E5-92A8-4487DE99E4AA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E330F0F3-F8C9-4610-B6F8-73D7377CE7CF}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Dada\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dada\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.01.31 15:46:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.a3d - C:\WINDOWS\System32\a3d.dll (Sensaura Ltd)
Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.divxa - C:\WINDOWS\System32\divxa32.acm (build Pinky.cz)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3radius - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ogg - C:\WINDOWS\System32\ogg.dll ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.vorbisenc - C:\WINDOWS\System32\vorbisenc.dll ()
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - C:\WINDOWS\System32\divxc32.dll (build Pinky.cz)
Drivers32: vidc.div4 - C:\WINDOWS\System32\divxc32f.dll (Pinky.cz)
Drivers32: vidc.divx - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvid.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.07.31 11:22:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.07.31 10:48:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
[2014.07.31 01:51:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Nabídka Start\Programy\X Codec Pack 2.6.6
[2014.07.31 01:51:42 | 000,000,000 | ---D | C] -- C:\Program Files\X Codec Pack
[2014.07.31 01:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Kodek CZ
[2014.07.31 01:36:02 | 000,000,000 | ---D | C] -- C:\Program Files\Kodek CZ
[2014.07.31 01:27:27 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014.07.31 01:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Convert MOV to AVI
[2014.07.31 01:23:08 | 000,000,000 | ---D | C] -- C:\Program Files\Convert MOV to AVI
[2014.07.31 00:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\WinRAR
[2014.07.30 20:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
[2014.07.30 20:37:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.07.30 15:31:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.07.30 15:30:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\jumpshot.com
[2014.07.30 15:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
[2014.07.30 15:30:03 | 000,057,800 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014.07.30 15:30:02 | 000,779,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.07.30 15:30:01 | 000,414,520 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014.07.30 15:30:01 | 000,067,824 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014.07.30 15:30:00 | 000,055,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2014.07.30 15:29:56 | 000,276,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014.07.30 15:29:54 | 000,043,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.07.30 15:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014.07.30 15:05:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Dada\Recent
[2014.07.30 14:31:01 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\System32\sqlite3.dll
[2014.07.30 14:30:01 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.07.30 13:29:10 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.07.30 13:29:10 | 000,000,000 | ---D | C] -- C:\rsit
[2014.07.29 11:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2014.07.29 07:01:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Apple
[2014.07.29 03:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\Avast AntiVirus 6.0.11 + Serial Keys
[2014.07.29 01:45:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\backburner
[2014.07.24 15:20:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\.hydrogen
[2014.07.24 15:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Hydrogen
[2014.07.24 15:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Hydrogen
[2014.07.24 12:45:25 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2014.07.15 10:32:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\iTunes
[2014.07.15 10:31:57 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014.07.15 10:31:42 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014.07.15 10:31:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2014.07.14 00:06:26 | 000,368,376 | ---- | C] (MPC-HC Team) -- C:\WINDOWS\System32\cdxareader.ax
[2006.12.02 07:31:08 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Data aplikací\vcredist_x86.exe
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014.07.31 11:27:39 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.07.31 11:21:00 | 000,000,360 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.07.31 11:13:30 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.07.31 11:12:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.07.31 11:12:38 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys
[2014.07.31 11:03:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.07.31 10:49:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dada\Plocha\OTL.exe
[2014.07.31 10:41:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.07.31 01:55:00 | 000,012,748 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2014.07.31 01:53:57 | 000,000,844 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Media Player Classic - HC.lnk
[2014.07.31 01:32:04 | 000,101,376 | ---- | M] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.07.31 01:23:10 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Convert MOV to AVI.lnk
[2014.07.31 01:21:05 | 000,001,481 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2014.07.30 21:55:33 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Microsoft Office Excel 2007.lnk
[2014.07.30 15:49:05 | 000,001,844 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.07.30 15:44:08 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014.07.30 15:44:08 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014.07.30 15:30:22 | 000,001,764 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswsp.sys
[2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.07.30 15:29:54 | 000,276,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2014.07.30 15:29:54 | 000,192,352 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2014.07.30 15:29:54 | 000,049,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.07.30 15:29:54 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.07.30 15:29:54 | 000,024,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.07.30 15:04:51 | 003,907,584 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014.07.30 15:01:00 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.07.30 14:27:23 | 001,365,551 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\adwcleaner_3.301.exe
[2014.07.30 01:42:03 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Microsoft Office Word 2007.lnk
[2014.07.29 15:20:01 | 000,251,393 | -H-- | M] () -- C:\TREEINFO.WC
[2014.07.29 15:14:59 | 000,000,272 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151457.reg
[2014.07.29 15:14:39 | 000,000,968 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151437.reg
[2014.07.29 15:14:09 | 000,101,458 | ---- | M] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151357.reg
[2014.07.29 12:19:08 | 000,000,713 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2014.07.29 07:01:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2014.07.29 01:00:55 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\System Explorer.lnk
[2014.07.27 22:05:53 | 000,003,140 | -HS- | M] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2014.07.27 22:05:00 | 000,002,579 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Corel PHOTO-PAINT X4.lnk
[2014.07.26 23:39:56 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2014.07.26 21:49:33 | 000,001,037 | ---- | M] () -- C:\Documents and Settings\Dada\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
[2014.07.26 21:48:53 | 000,001,013 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\Dropbox.lnk
[2014.07.24 15:19:46 | 000,001,587 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Hydrogen.lnk
[2014.07.15 11:20:51 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Dada\Plocha\CorelDRAW X4.lnk
[2014.07.15 10:32:45 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\iTunes.lnk
[2014.07.14 10:12:53 | 000,000,423 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI
[2014.07.14 00:06:26 | 000,368,376 | ---- | M] (MPC-HC Team) -- C:\WINDOWS\System32\cdxareader.ax
[2014.07.10 12:37:18 | 000,081,300 | ---- | M] () -- C:\WINDOWS\FontData.fdb
[2014.07.09 13:14:06 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.07.31 10:54:27 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.07.31 01:53:57 | 000,000,844 | ---- | C] () -- C:\Documents and Settings\Dada\Plocha\Media Player Classic - HC.lnk
[2014.07.31 01:23:10 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Convert MOV to AVI.lnk
[2014.07.30 15:30:22 | 000,001,764 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.07.30 15:30:12 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.07.30 15:30:02 | 000,192,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.07.30 15:30:01 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.07.30 15:30:00 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.07.30 15:00:45 | 003,907,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014.07.30 14:27:16 | 001,365,551 | ---- | C] () -- C:\Documents and Settings\Dada\Plocha\adwcleaner_3.301.exe
[2014.07.29 15:14:58 | 000,000,272 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151457.reg
[2014.07.29 15:14:38 | 000,000,968 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151437.reg
[2014.07.29 15:14:02 | 000,101,458 | ---- | C] () -- C:\Documents and Settings\Dada\Dokumenty\cc_20140729_151357.reg
[2014.07.24 15:19:46 | 000,001,587 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Hydrogen.lnk
[2014.07.15 10:32:45 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\iTunes.lnk
[2014.06.25 00:13:07 | 000,000,018 | ---- | C] () -- C:\WINDOWS\LEBALKS5.INI
[2014.06.02 15:04:36 | 000,000,273 | ---- | C] () -- C:\WINDOWS\System32\EA5LMTMT88V.dat
[2013.07.08 12:52:56 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.07.08 12:52:55 | 001,098,236 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.07.08 12:52:55 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.07.08 12:48:20 | 002,289,288 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012.12.28 21:22:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\gTabletTaskDll.dll
[2012.01.12 22:29:10 | 003,179,142 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-3612128790-3562664508-856553003-1005-0.dat
[2012.01.12 03:25:30 | 000,459,158 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2012.01.12 02:13:08 | 000,000,147 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\Microsoft.SqlServer.Compact.351.32.bc
[2011.11.03 00:34:39 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\$_hpcst$.hpc
[2011.07.26 21:32:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Dada\.gtk-bookmarks
[2011.07.26 16:38:10 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Dada\.gtkrc-2.0
[2011.03.22 15:29:08 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\keyfile3.drm
[2011.01.24 00:05:48 | 000,000,555 | ---- | C] () -- C:\Documents and Settings\Dada\espeakedit.ini
[2010.05.05 20:22:11 | 000,000,179 | ---- | C] () -- C:\Documents and Settings\Dada\.jupload.properties
[2009.12.26 23:48:16 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Dada\Data aplikací\$_hpcst$.hpc
[2009.11.18 00:10:36 | 000,003,140 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2009.11.18 00:10:36 | 000,000,008 | RHS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\2EAB843AB8.sys
[2008.10.18 23:21:38 | 000,449,810 | ---- | C] () -- C:\Documents and Settings\Dada\.fonts.cache-1
[2008.05.05 22:34:10 | 000,000,013 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ÄĐ3113.sys
[2008.02.14 22:01:06 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.01.02 18:03:26 | 000,101,376 | ---- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.12.24 21:35:33 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Dada\Local Settings\Data aplikací\fusioncache.dat
========== ZeroAccess Check ==========
[2008.01.31 09:50:14 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 05:21:55 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 05:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2014.07.15 10:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013.12.20 01:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ashampoo
[2014.07.29 02:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2014.03.30 02:24:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2014.06.25 01:11:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CAM Development
[2014.06.02 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2013.07.11 23:02:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SecTaskMan
[2014.06.16 01:20:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Splashtop
[2014.07.28 11:26:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SystemExplorer
[2014.06.07 00:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2013.01.27 23:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Western Digital
[2011.12.24 21:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012.06.13 20:33:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{6AD8E59C-250C-4201-B5BA-56ADEF76FF46}
[2013.12.20 01:08:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Ashampoo
[2014.07.29 03:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Autodesk
[2014.07.30 15:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.07.31 11:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Dropbox
[2014.06.03 23:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\EPSON
[2012.10.01 01:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\ESET
[2008.05.06 19:22:08 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Dada\Data aplikací\FVSTemp
[2007.12.28 22:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Leadertech
[2014.07.31 11:22:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.06.02 15:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Orienteering Organiser
[2013.11.07 07:23:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Splashtop
[2013.07.24 23:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\SportSoftware
[2009.10.11 21:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Desktop Search
[2009.10.11 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Search
[2012.05.29 21:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Xilisoft
========== Purity Check ==========
========== Custom Scans ==========
< >
[2008.01.31 15:49:23 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2008.01.31 16:33:11 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.07.12 21:44:05 | 000,000,932 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2009.07.12 21:44:06 | 000,000,936 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2012.04.01 11:35:31 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013.12.26 04:27:26 | 000,000,284 | ---- | C] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2014.03.10 00:05:01 | 000,000,214 | ---- | C] () -- C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.03.10 00:05:03 | 000,000,220 | ---- | C] () -- C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.07.30 15:30:12 | 000,000,360 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
< >
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 23:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.05.14 22:14:27 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=ACCF5A9A1FFAA490F33DBA1C632B95E1 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[278 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\DRVSTORE\*.tmp files -> C:\WINDOWS\system32\DRVSTORE\*.tmp -> ]
[1 C:\WINDOWS\twain_32\*.tmp files -> C:\WINDOWS\twain_32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.07.29 12:12:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Adobe
[2014.04.05 02:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Apple Computer
[2013.12.20 01:08:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Ashampoo
[2014.07.29 03:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Autodesk
[2014.07.30 15:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\AVAST Software
[2014.04.22 22:22:14 | 000,000,000 | R--D | M] -- C:\Documents and Settings\Dada\Data aplikací\Brother
[2010.07.09 23:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Corel
[2014.07.31 11:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Dropbox
[2014.06.03 23:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\EPSON
[2012.10.01 01:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\ESET
[2008.05.06 19:22:08 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Dada\Data aplikací\FVSTemp
[2013.01.14 18:01:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Google
[2007.12.26 01:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Help
[2007.12.28 22:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Leadertech
[2013.07.07 22:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Logitech
[2014.07.29 01:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Macromedia
[2014.07.30 20:37:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
[2013.02.24 22:41:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Dada\Data aplikací\Microsoft
[2014.07.31 11:22:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\MPC-HC
[2014.06.07 11:46:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\NVIDIA
[2014.06.02 15:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Orienteering Organiser
[2008.09.28 22:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\PSpad
[2013.11.07 07:23:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Splashtop
[2013.07.24 23:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\SportSoftware
[2009.06.04 21:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Sun
[2014.07.31 01:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\vlc
[2009.10.11 21:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Desktop Search
[2009.10.11 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Windows Search
[2014.07.31 00:06:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\WinRAR
[2012.05.29 21:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\Xilisoft
< %APPDATA%\*.exe /s >
[2014.07.21 23:02:50 | 035,464,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
[2014.07.21 23:06:00 | 000,262,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\DropboxUninstaller.exe
[2014.07.21 23:02:54 | 000,280,640 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\DropboxUpdateHelper.exe
[2012.08.25 01:15:30 | 005,163,984 | R--- | M] (Western Digital, Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Microsoft\Installer\{094D3055-1F1D-4221-B288-4DD0BE529794}\icon.exe
[2013.07.07 22:17:45 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Dada\Data aplikací\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2014.04.22 18:59:16 | 000,145,408 | ---- | M] () -- C:\Documents and Settings\Dada\Data aplikací\Sun\Java\jre1.7.0_55\lzma.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008.01.31 16:38:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.01.31 16:38:55 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.01.31 16:38:55 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
[2014.07.30 15:29:54 | 000,024,184 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswHwid.sys
[2014.07.30 15:29:54 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswMonFlt.sys
[2014.07.30 15:29:54 | 000,055,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswRdr.sys
[2014.07.30 15:29:54 | 000,049,944 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswRvrt.sys
[2014.07.30 15:29:54 | 000,779,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSnx.sys
[2014.07.30 15:30:15 | 000,414,520 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswsp.sys
[2014.07.30 15:29:54 | 000,057,800 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswTdi.sys
[2014.07.30 15:29:54 | 000,192,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswVmm.sys
< %systemroot%\system32\*.* /3 >
[2014.07.30 15:29:54 | 000,276,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\aswBoot.exe
[2014.07.30 15:44:08 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2014.07.30 15:44:08 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2014.07.30 15:04:51 | 003,907,584 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2014.07.31 01:55:00 | 000,012,748 | ---- | M] () -- C:\WINDOWS\system32\nvAppTimestamps
[2014.07.30 15:01:00 | 000,012,598 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"SystemExplorerAutoStart" = "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY -- [2014.07.28 07:04:04 | 003,830,632 | ---- | M] (Mister Group)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.07.31 11:27:39 | 000,000,512 | ---- | M] () MD5=661190C86A0D9FE006AF83A322DE6F2E -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2001.08.14 19:31:08 | 000,030,054 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Autodesk\Inventor Fusion 2012\Design Data\surfaces\Cracks.bmp
[2001.08.14 19:31:08 | 000,030,054 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Inventor Server\Textures\surfaces\Cracks.bmp
[2005.03.08 11:30:56 | 000,092,827 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Bumpmap\Cracks.cpt
[2005.03.08 11:30:58 | 000,016,068 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Canvas\cracks2c.pcx
[2005.03.08 11:31:08 | 000,010,560 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X4\Custom Data\Tiles\CRACKS2M.CPT
[1999.03.28 13:04:50 | 000,092,827 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Bumpmap\Cracks.cpt
[1997.02.27 11:28:24 | 000,016,068 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Canvas\cracks2c.pcx
[1999.03.28 12:29:12 | 000,010,560 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Tiles\CRACKS2M.CPT
< *keygen* /s >
< *AntiWPA* /s >
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
< *loader* /s >
[2010.06.23 18:08:48 | 000,034,500 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Autodesk\Inventor Fusion 2012\Design Data\Loader2.ani
[2010.01.17 00:57:18 | 000,004,239 | ---- | M] () -- \kometakrl\vnitro_aktual\libraries\loader.php
[2010.01.17 00:55:00 | 000,000,584 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\images\mootree_loader.gif
[2010.01.17 00:54:54 | 000,009,006 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\js\uploader.js
[2010.01.17 00:54:54 | 000,001,615 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\swf\uploader.swf
[2007.11.06 12:36:18 | 004,937,640 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\Photodownloader.exe
[2007.03.14 17:07:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\de_de\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\en_us\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\es_es\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\it_it\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\no_no\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011.02.04 05:53:33 | 000,134,368 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AcAutoLoader.arx
[2011.03.15 14:58:23 | 000,010,568 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AcAutoLoaderRes.dll
[2011.02.04 05:52:48 | 000,328,416 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AdDownloaderCore.dll
[2011.01.17 18:09:50 | 000,024,456 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AecLoader.arx
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AdExchange\loader.gif
[2012.01.12 02:15:03 | 000,000,390 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Help\contexthelp\APPAUTOLOADER.htm
[2011.01.25 01:42:42 | 000,044,704 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Inventor Server\Bin\ClrAddinLoader.dll
[2010.06.23 18:08:48 | 000,034,500 | ---- | M] () -- \Program Files\Autodesk\Inventor Fusion 2012\BusyLoader.ani
[2014.07.30 15:29:51 | 000,071,968 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2012.02.23 00:11:56 | 000,078,336 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 00:11:56 | 000,155,136 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 00:11:56 | 000,117,248 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2007.03.14 17:10:18 | 000,088,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:20 | 000,025,188 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:26 | 000,032,022 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:28 | 000,032,216 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:30 | 000,027,655 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:36 | 000,030,891 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:38 | 000,032,399 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,393 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:46 | 000,022,871 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:48 | 000,025,272 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,109 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,441 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:52 | 000,032,499 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:54 | 000,032,074 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:56 | 000,032,110 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:58 | 000,024,996 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:00 | 000,031,772 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:02 | 000,024,463 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:04 | 000,025,054 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,032,171 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,024,411 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:08 | 000,025,525 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,741 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,833 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007.07.06 18:47:00 | 000,004,629 | ---- | M] () -- \Program Files\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2014.02.06 01:52:40 | 000,007,281 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2008.07.30 11:06:58 | 000,072,192 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.dll
[2008.07.29 04:43:16 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.tlb
[2013.03.18 16:29:01 | 000,002,941 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2013.03.18 16:29:01 | 000,000,411 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2013.03.18 16:29:02 | 001,138,236 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\org-openide-loaders.jar
[2013.03.18 16:29:02 | 000,007,002 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2013.03.18 16:29:02 | 000,006,658 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2013.03.18 16:29:03 | 000,000,457 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2013.05.16 16:41:22 | 001,152,288 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{2B9D0A88-20FA-4E4B-9162-34762AA1D205}\ExtensionLoader.dll
[2013.05.16 16:41:22 | 001,152,288 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.06.04 10:57:24 | 000,057,224 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.06.04 10:57:24 | 000,083,848 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2006.12.23 18:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2003.06.26 18:10:12 | 000,106,496 | ---- | M] () -- \swsetup\SP27103\SoundMAX Synthesizer\DLSLoader.exe
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2007.12.24 22:21:32 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2009.07.29 04:00:56 | 000,000,338 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.inf
[2009.07.29 22:21:24 | 003,540,488 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.ocx
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1996.10.15 09:53:16 | 000,078,848 | ---- | M] () -- \WINDOWS\system32\INLOADER.DLL
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[2011.03.03 01:07:04 | 000,020,184 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\ImportNode.tif
[2011.03.03 01:07:08 | 000,029,280 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\OutputNode.tif
[2011.03.03 01:07:08 | 000,052,280 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\OutputNodeMedia.tif
[2011.03.03 01:07:14 | 000,020,812 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\SplitNode.tif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2007.03.14 17:05:52 | 000,001,673 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\BadSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,545 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,639 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,000,833 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ReserializeAlert.exv
[2007.03.14 17:05:52 | 000,028,474 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\SerializationWF.exv
[2007.03.14 17:05:52 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\BadSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\ReserializeAlert.exv
[2007.11.06 12:36:20 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\SerializationWF.exv
[2007.03.14 17:05:54 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\BadSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\ReserializeAlert.exv
[2007.11.06 12:36:22 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\SerializationWF.exv
[2007.03.15 10:19:10 | 000,001,673 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\BadSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,545 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,639 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,000,833 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ReserializeAlert.exv
[2007.03.15 10:19:10 | 000,028,474 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\SerializationWF.exv
[2007.03.15 10:19:10 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\BadSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\ReserializeAlert.exv
[2007.03.15 10:19:12 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\SerializationWF.exv
[2007.03.15 10:19:14 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\BadSerialNumberAlert.exv
[2007.03.15 10:19:14 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:14 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:16 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\ReserializeAlert.exv
[2007.03.15 10:19:16 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\SerializationWF.exv
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\AdLM\R4\cs-CZ\Webdepot\RTSerialNumberHelp.html
[1999.03.23 07:39:52 | 000,037,079 | ---- | M] () -- \Program Files\Corel\Graphics9\Register\serial2.gif
[2012.11.29 19:15:50 | 000,120,832 | ---- | M] () -- \Program Files\EPSON\portcommunicationservice\SerialIO31.DLL
[2014.06.28 11:35:08 | 000,003,234 | ---- | M] () -- \Program Files\Hard Disk Sentinel\DISKDATA_Hard_Disk_Device_1_SERIAL1_DISK1.dat
[2013.03.18 16:28:48 | 000,034,704 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\bin\serialver.exe
[2014.05.13 23:17:02 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.07.24 20:01:50 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2006.01.27 01:44:04 | 000,000,612 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\EnumerateSerialPorts.snippet
[2006.01.27 01:44:04 | 000,001,198 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\ReadDatafromaSerialPort.snippet
[2006.01.27 01:44:04 | 000,001,512 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2008.06.14 02:32:10 | 000,285,032 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\en\System.Runtime.Serialization.xml
[2010.10.28 10:10:40 | 000,007,185 | ---- | M] () -- \Program Files\Sun\JavaDB\docs\html\ref\rreffuncxmlserialize.html
[2010.09.21 17:20:48 | 000,030,997 | ---- | M] () -- \Program Files\Sun\JavaDB\javadoc\jdbc3\serialized-form.html
[2010.09.21 17:20:52 | 000,029,304 | ---- | M] () -- \Program Files\Sun\JavaDB\javadoc\jdbc4\serialized-form.html
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2007.12.24 21:10:43 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2007.12.24 21:35:27 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.04.08 21:21:00 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.12 21:27:53 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.04.08 21:21:22 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2013.01.09 21:21:06 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.12 21:06:51 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\6c29ee2bedfe88dcd66993f1af135ad8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.12 21:19:46 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9860da66bf0219612908e7412b0a6e2e\System.Runtime.Serialization.ni.dll
[2013.08.15 00:36:28 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a95e0af6fa5d2e8ffd5e0091f6513271\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.08.15 00:50:01 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\ba6670610621b25b1608e457ba0ef305\System.Runtime.Serialization.ni.dll
[2014.02.12 21:45:33 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\046c2851963b30d0e14194051c03de33\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.11 02:14:25 | 002,659,328 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
[2013.08.15 01:12:06 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\ad3522eafb95969623aeef7c389246bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.12 21:45:07 | 002,659,328 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\be0a1bb51a0d8fb41140c8111ed56d19\System.Runtime.Serialization.ni.dll
[2014.02.12 21:54:39 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\bc1a3b2de28e513e09fe7322c122144f\System.Xml.Serialization.ni.dll
[2013.07.12 01:43:00 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\cda839ea462e123d42cb6d0883cf0f4d\System.Xml.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \WINDOWS\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2012.01.12 21:16:51 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.12 21:33:07 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.01.12 21:16:50 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.02.12 21:33:04 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.12 21:33:18 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2004.07.15 15:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2003.04.07 20:24:52 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.07.25 12:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.09.10 17:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.06.02 09:01:28 | 000,009,272 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\en\System.Runtime.Serialization.Formatters.Soap.xml
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 03:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 03:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 04:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 21 bytes -> C:\.apdisk:com.apple.quarantine
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ADB1368B
< End of report >
[2010.06.23 18:08:48 | 000,034,500 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Autodesk\Inventor Fusion 2012\Design Data\Loader2.ani
[2010.01.17 00:57:18 | 000,004,239 | ---- | M] () -- \kometakrl\vnitro_aktual\libraries\loader.php
[2010.01.17 00:55:00 | 000,000,584 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\images\mootree_loader.gif
[2010.01.17 00:54:54 | 000,009,006 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\js\uploader.js
[2010.01.17 00:54:54 | 000,001,615 | ---- | M] () -- \kometakrl\vnitro_aktual\media\system\swf\uploader.swf
[2007.11.06 12:36:18 | 004,937,640 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\Photodownloader.exe
[2007.03.14 17:07:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\de_de\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\en_us\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\es_es\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\it_it\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\no_no\Photodownloader.ini
[2007.03.14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2007.03.14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011.02.04 05:53:33 | 000,134,368 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AcAutoLoader.arx
[2011.03.15 14:58:23 | 000,010,568 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AcAutoLoaderRes.dll
[2011.02.04 05:52:48 | 000,328,416 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AdDownloaderCore.dll
[2011.01.17 18:09:50 | 000,024,456 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AecLoader.arx
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\AdExchange\loader.gif
[2012.01.12 02:15:03 | 000,000,390 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Help\contexthelp\APPAUTOLOADER.htm
[2011.01.25 01:42:42 | 000,044,704 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2012 - Czech\Inventor Server\Bin\ClrAddinLoader.dll
[2010.06.23 18:08:48 | 000,034,500 | ---- | M] () -- \Program Files\Autodesk\Inventor Fusion 2012\BusyLoader.ani
[2014.07.30 15:29:51 | 000,071,968 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2012.02.23 00:11:56 | 000,078,336 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 00:11:56 | 000,155,136 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 00:11:56 | 000,117,248 | ---- | M] () -- \Program Files\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2007.03.14 17:10:18 | 000,088,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:20 | 000,025,188 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:26 | 000,032,022 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:28 | 000,032,216 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:30 | 000,027,655 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:36 | 000,030,891 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:38 | 000,032,399 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,393 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:46 | 000,022,871 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:48 | 000,025,272 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,109 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,441 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:52 | 000,032,499 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:54 | 000,032,074 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:56 | 000,032,110 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:58 | 000,024,996 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:00 | 000,031,772 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:02 | 000,024,463 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:04 | 000,025,054 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,032,171 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,024,411 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:08 | 000,025,525 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,741 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,833 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007.07.06 18:47:00 | 000,004,629 | ---- | M] () -- \Program Files\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2014.02.06 01:52:40 | 000,007,281 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2008.07.30 11:06:58 | 000,072,192 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.dll
[2008.07.29 04:43:16 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.tlb
[2013.03.18 16:29:01 | 000,002,941 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2013.03.18 16:29:01 | 000,000,411 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2013.03.18 16:29:02 | 001,138,236 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\org-openide-loaders.jar
[2013.03.18 16:29:02 | 000,007,002 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2013.03.18 16:29:02 | 000,006,658 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2013.03.18 16:29:03 | 000,000,457 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2013.05.16 16:41:22 | 001,152,288 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{2B9D0A88-20FA-4E4B-9162-34762AA1D205}\ExtensionLoader.dll
[2013.05.16 16:41:22 | 001,152,288 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.06.04 10:57:24 | 000,057,224 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.06.04 10:57:24 | 000,083,848 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2006.12.23 18:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2003.06.26 18:10:12 | 000,106,496 | ---- | M] () -- \swsetup\SP27103\SoundMAX Synthesizer\DLSLoader.exe
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2007.12.24 22:21:32 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2009.07.29 04:00:56 | 000,000,338 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.inf
[2009.07.29 22:21:24 | 003,540,488 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.ocx
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1996.10.15 09:53:16 | 000,078,848 | ---- | M] () -- \WINDOWS\system32\INLOADER.DLL
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[2011.03.03 01:07:04 | 000,020,184 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\ImportNode.tif
[2011.03.03 01:07:08 | 000,029,280 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\OutputNode.tif
[2011.03.03 01:07:08 | 000,052,280 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\OutputNodeMedia.tif
[2011.03.03 01:07:14 | 000,020,812 | ---- | M] () -- \Program Files\Autodesk\Composite 2012\resources\icons\SplitNode.tif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2007.03.14 17:05:52 | 000,001,673 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\BadSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,545 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,639 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,000,833 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ReserializeAlert.exv
[2007.03.14 17:05:52 | 000,028,474 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\SerializationWF.exv
[2007.03.14 17:05:52 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\BadSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:52 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\ReserializeAlert.exv
[2007.11.06 12:36:20 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\ar_AE\SerializationWF.exv
[2007.03.14 17:05:54 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\BadSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\CantChangeSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\InValidUpGradeSerialNumberAlert.exv
[2007.03.14 17:05:54 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\ReserializeAlert.exv
[2007.11.06 12:36:22 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\LMResources\he_IL\SerializationWF.exv
[2007.03.15 10:19:10 | 000,001,673 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\BadSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,545 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,639 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,000,833 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ReserializeAlert.exv
[2007.03.15 10:19:10 | 000,028,474 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\SerializationWF.exv
[2007.03.15 10:19:10 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\BadSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:10 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\ReserializeAlert.exv
[2007.03.15 10:19:12 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\ar_AE\SerializationWF.exv
[2007.03.15 10:19:14 | 000,001,695 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\BadSerialNumberAlert.exv
[2007.03.15 10:19:14 | 000,001,567 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\CantChangeSerialNumberAlert.exv
[2007.03.15 10:19:14 | 000,001,661 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\InValidUpGradeSerialNumberAlert.exv
[2007.03.15 10:19:16 | 000,000,855 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\ReserializeAlert.exv
[2007.03.15 10:19:16 | 000,028,485 | ---- | M] () -- \Program Files\Adobe\Adobe Device Central CS3\LMResources\he_IL\SerializationWF.exv
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\AdLM\R4\cs-CZ\Webdepot\RTSerialNumberHelp.html
[1999.03.23 07:39:52 | 000,037,079 | ---- | M] () -- \Program Files\Corel\Graphics9\Register\serial2.gif
[2012.11.29 19:15:50 | 000,120,832 | ---- | M] () -- \Program Files\EPSON\portcommunicationservice\SerialIO31.DLL
[2014.06.28 11:35:08 | 000,003,234 | ---- | M] () -- \Program Files\Hard Disk Sentinel\DISKDATA_Hard_Disk_Device_1_SERIAL1_DISK1.dat
[2013.03.18 16:28:48 | 000,034,704 | ---- | M] () -- \Program Files\Java\jdk1.6.0_43\bin\serialver.exe
[2014.05.13 23:17:02 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.07.24 20:01:50 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2006.01.27 01:44:04 | 000,000,612 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\EnumerateSerialPorts.snippet
[2006.01.27 01:44:04 | 000,001,198 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\ReadDatafromaSerialPort.snippet
[2006.01.27 01:44:04 | 000,001,512 | ---- | M] () -- \Program Files\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2008.06.14 02:32:10 | 000,285,032 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\en\System.Runtime.Serialization.xml
[2010.10.28 10:10:40 | 000,007,185 | ---- | M] () -- \Program Files\Sun\JavaDB\docs\html\ref\rreffuncxmlserialize.html
[2010.09.21 17:20:48 | 000,030,997 | ---- | M] () -- \Program Files\Sun\JavaDB\javadoc\jdbc3\serialized-form.html
[2010.09.21 17:20:52 | 000,029,304 | ---- | M] () -- \Program Files\Sun\JavaDB\javadoc\jdbc4\serialized-form.html
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2007.12.24 21:10:43 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2007.12.24 21:35:27 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.04.08 21:21:00 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.12 21:27:53 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.04.08 21:21:22 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2013.01.09 21:21:06 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.12 21:06:51 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\6c29ee2bedfe88dcd66993f1af135ad8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.12 21:19:46 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9860da66bf0219612908e7412b0a6e2e\System.Runtime.Serialization.ni.dll
[2013.08.15 00:36:28 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a95e0af6fa5d2e8ffd5e0091f6513271\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.08.15 00:50:01 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\ba6670610621b25b1608e457ba0ef305\System.Runtime.Serialization.ni.dll
[2014.02.12 21:45:33 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\046c2851963b30d0e14194051c03de33\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.11 02:14:25 | 002,659,328 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
[2013.08.15 01:12:06 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\ad3522eafb95969623aeef7c389246bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.12 21:45:07 | 002,659,328 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\be0a1bb51a0d8fb41140c8111ed56d19\System.Runtime.Serialization.ni.dll
[2014.02.12 21:54:39 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\bc1a3b2de28e513e09fe7322c122144f\System.Xml.Serialization.ni.dll
[2013.07.12 01:43:00 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\cda839ea462e123d42cb6d0883cf0f4d\System.Xml.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \WINDOWS\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2012.01.12 21:16:51 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.12 21:33:07 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.01.12 21:16:50 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.02.12 21:33:04 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.12 21:33:18 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2004.07.15 15:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2003.04.07 20:24:52 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.07.25 12:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.09.10 17:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.06.02 09:01:28 | 000,009,272 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\en\System.Runtime.Serialization.Formatters.Soap.xml
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 03:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 03:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 04:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 21 bytes -> C:\.apdisk:com.apple.quarantine
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ADB1368B
< End of report >
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
OTL Extras logfile created on: 31.7.2014 11:23:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dada\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,57 Gb Available Physical Memory | 28,56% Memory free
3,85 Gb Paging File | 2,37 Gb Available in Paging File | 61,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 137,24 Gb Free Space | 46,04% Space Free | Partition Type: NTFS
Computer Name: DAN | User Name: Dada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\wincmd\WINCMD32.EXE" = C:\wincmd\WINCMD32.EXE:*:Enabled:Windows Commander 32 bit internationale Version, Dateimanager-Ersatz fuer Windows -- (C. Ghisler & Co.)
"C:\Program Files\Canon\DV Messenger\DV Messenger.exe" = C:\Program Files\Canon\DV Messenger\DV Messenger.exe:*:Enabled:Executable -- (Canon Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\WINDOWS\system32\hasplms.exe" = C:\WINDOWS\system32\hasplms.exe:*:Enabled:Sentinel License Manager -- (SafeNet Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE" = C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE:*:Enabled:EPSON TM-T88V Utility Ver.1.40 -- (SEIKO EPSON CORPORATION)
"C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe" = C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe:*:Enabled:Printer Network Setting Ver.5 -- (SEIKO EPSON CORPORATION)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe:*:Enabled:Splashtop® Streamer -- (Splashtop Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe:*:Enabled:Splashtop® GDI Server -- (Splashtop Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe:*:Enabled:Splashtop® PROXY Server -- (Splashtop Inc.)
"C:\Program Files\Google\Chrome\Application\chrome.exe" = C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome -- (Google Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW(R) Graphics Suite X4
"_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{010C0B4A-DC93-4BB4-893B-BDDE95355A3E}" = Freeware PDF Unlocker
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}" = Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729
"{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}" = Autodesk Content Service
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{094D3055-1F1D-4221-B288-4DD0BE529794}" = Nástroj WD Software Upgrader
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A37EE62-9A58-420D-90CC-4E52153112EE}" = iTunes
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{14866AAD-1F23-39AC-A62B-7091ED1ADE64}" = Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{185F9795-9663-4F13-9EF9-307A282ADB5A}" = ph
"{1C431535-5AB5-47D1-8E36-6C795AF913F7}" = EPSON Port Communication Service
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}" = Apple Application Support
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24B8697C-AE34-472F-A158-1A04B5B7BD30}" = SPORTident Config
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}" = Autodesk Material Library Low Resolution Image Library 2012
"{258FDE4E-EE80-4BD7-ACE1-BDAED5F22F09}" = REALTEK RTL8187 Wireless LAN Driver
"{26A24AE4-039D-4CA4-87B4-2F03217060FF}" = Java 7 Update 60
"{26A24AE4-039D-4CA4-87B4-2F83216034F0}" = Java(TM) 6 Update 34
"{26A24AE4-039D-4CA4-87B4-2F83216043FF}" = Java(TM) 6 Update 43
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2A075BB4-E976-4278-BF3F-E5C6945D84C0}" = bl
"{2A414CBE-CDF3-48C6-A91B-D3D4522F8EB5}" = Sentinel Runtime
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
"{32A3A4F4-B792-11D6-A78A-00B0D0160430}" = Java(TM) SE Development Kit 6 Update 43
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{378E39C3-92F2-4241-AC90-FAF023007D6D}" = Klient Správy přístupových práv v systému Windows s aktualizací Service Pack 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3AB164-964F-419D-A688-810E728B9D7D}" = GalleryImages
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1" = System Explorer 5.9.1
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{41DF6AB7-4F89-478D-8501-D81A7A975D35}" = SP2GalleryImages
"{44A27085-0616-4181-A0C3-81C7ECA17F73}" = CorelDRAW Graphics Suite X4
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}" = Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5783F2D7-A001-0405-0002-0060B0CE6BBA}" = AutoCAD 2012 - Czech
"{5783F2D7-A001-0405-1002-0060B0CE6BBA}" = AutoCAD 2012 Language Pack - Czech
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60ED98A7-BE97-4F26-B32E-5087337C6044}" = EPSON TM Coupon Package
"{6127AB2D-6E7F-422F-8D0C-5D0E24CE843A}" = EPSON APD5 PrinterReg for TM-T88V
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6235D5B2-42F9-46E6-9171-088D1D7FF6EE}" = EPSON APD5 Plugin for TM-T88V
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{65420DC9-306E-4371-905F-F4DC3B418E52}" = Autodesk Material Library Base Resolution Image Library 2012
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1" = Kodek 0.16 CZ
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73EC658D-A1C6-40CA-8E86-E05821BAACE7}" = Java DB 10.6.2.1
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77D28FF5-242F-488A-8215-937D6A4D69E0}" = Adobe AIR
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7CF94476-77F9-401E-BEB5-845285735AAB}" = Windows Live Zabezpečení rodiny
"{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW Graphics SUite X4 - ICA
"{7F05E704-30A6-421A-97A7-8EEB1C7FF012}" = CorelDRAW Graphics Suite X4 - Capture
"{7F05E704-30A6-421A-97A7-8EEB1C7FF013}" = CorelDRAW Graphics Suite X4 - Draw
"{7F05E704-30A6-421A-97A7-8EEB1C7FF014}" = CorelDRAW Graphics Suite X4 - PP
"{7F05E704-30A6-421A-97A7-8EEB1C7FF016}" = CorelDRAW Graphics Suite X4 - Content
"{7F05E704-30A6-421A-97A7-8EEB1C7FF017}" = CorelDRAW Graphics Suite X4 - Filters
"{7F05E704-30A6-421A-97A7-8EEB1C7FF019}" = CorelDRAW Graphics Suite X4 - FontNav
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{896A285E-2DC4-4C73-BEDA-964244FD658A}" = ioTablet
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B3F4499-32E6-470D-8586-E6C03420F889}" = ASUS WiFi-AP Solo
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}" = Autodesk Material Library 2012
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91B33C97-91F8-FFB3-581B-BC952C901685}_is1" = Ashampoo Burning Studio FREE v.1.12.0
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}" = Apple Mobile Device Support
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}" = CorelDRAW Graphics Suite X4 - IPM
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A39EA3C8-7BF3-4FA7-9A67-3D3611BAE59E}_is1" = Convert MOV to AVI 1.0
"{A49BDCBE-590E-43A6-AB77-7C40E499B7C1}" = Autodesk Design Review 2012
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AAB6D0F8-02B3-4E89-B24C-0BB153C21445}" = Windows Presentation Foundation Language Pack (CSY)
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB85A4DB-357F-41B5-94A6-C9A4CBBD791B}" = DV Network Software
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.10) - Czech
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B24839E5-A70C-48AD-B4D9-B9FB46B4B038}_is1" = Hydrogen 0.9.6 preview release for windows
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 140.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 4.11.9
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}" = Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B5751715-EC10-43D9-8C95-62E1368433EF}" = Autodesk Material Library Medium Resolution Image Library 2012
"{B61D21B6-469D-4423-B161-62DB20B8A70E}" = Visual Basic for Applications (R) Core - English
"{B7C5EA94-B96A-41F5-BE95-25D78B486678}" = Splashtop Streamer
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BED27751-CD2A-4C2F-9813-00B9B60C76FE}" = Railroad Tycoon II - Platinum
"{BF439B41-0252-48DE-8B8B-0430CB26A181}" = CorelDRAW Graphics Suite X4 - VBA
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C19B3EB6-B54C-3204-A4DF-88432E0C79F7}" = Microsoft ReportViewer 2010 Redistributable
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{CE6557BF-FA56-4C95-91E3-B8C641679DF0}" = Windows Live Messenger
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D4EEC21C-04F0-4CF4-8078-82C11E38EF11}" = REALTEK RTL8187SE Wireless LAN Driver
"{DB81779E-7CC5-4630-BCFC-754004956444}" = Visual Basic for Applications (R) Core
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DDA36F98-A44D-46F2-88A9-9CDDB8A9625D}" = EPSON TM-T88V Utility Ver.1.40
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E552C39C-C70E-464F-9733-8311331BDD90}" = Jazykový balíček modulu plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}" = Adobe Creative Suite 6 Master Collection
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}" = Modul plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Klient Správy přístupových práv v systému Windows SP2, zpětná kompatibilita
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F4D69A8D-BB5C-4C3D-A1AD-64C24233EDD6}" = Windows Live Essentials
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FB09515C-8E3E-4E0F-A1F2-032F38DEC185}" = Microsoft .NET Framework 3.0 Czech Language Pack
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FEC02973-0781-49C7-9F04-28DA9BAF0372}" = Composite 2012
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFD44E90-AEA4-4D25-AF53-5CE2723E88DA}" = MarketingReg
"{FFF5619F-6669-4EC5-A85E-9994F70A9E5D}" = Autodesk Inventor Fusion 2012
"{FFF7F80F-929E-497F-A112-B070DE816128}" = Jazykový balíček Autodesk Inventor Fusion 2012
"{FFFE7261-2318-4227-B827-E9E05E16DFE5}" = CorelDRAW Graphics Suite X4 - Lang CZ
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"AutoCAD 2012 - Czech" = AutoCAD 2012 - Czech
"Autodesk Design Review 2012" = Autodesk Design Review 2012
"Autodesk Inventor Fusion 2012" = Autodesk Inventor Fusion 2012
"Avast" = avast! Free Antivirus
"Bass Audio Decoder" = Bass Audio Decoder (remove only)
"BDE for Orienteering Organiser" = BDE for Orienteering Organiser
"CCleaner" = CCleaner
"CD Audio Reader Filter" = CD Audio Reader Filter (remove only)
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"Corel Applications" = Corel Applications
"DCoder Image Source" = DCoder Image Source (remove only)
"DirectVobSub" = DirectVobSub (remove only)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Advanced Printer Driver 5 For TM-T88V" = EPSON Advanced Printer Driver for TM-T88V Ver.5
"ESET Online Scanner" = ESET Online Scanner v3
"Gabest MPEG Splitter" = Gabest MPEG Splitter (remove only)
"Google Chrome" = Google Chrome
"HaaliMkx" = Haali Media Splitter
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HPOCR" = HP OCR Software 9.0
"HWiNFO32_is1" = HWiNFO32 Version 2.37
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"InterBase 6 Client Open Edition - 6.0.2.0" = InterBase 6 Client Open Edition - 6.0.2.0
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.0 Czech Language Pack" = Microsoft .NET Framework 3.0 Czech Language Pack
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Modul plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012" = Autodesk Inventor Fusion plug-in for AutoCAD 2012
"MONOGRAM AMR Splitter/Decoder" = MONOGRAM AMR Splitter/Decoder (remove only)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OCAD 9_is1" = OCAD 9.7 Service Update Professional
"OE2010" = OE2010 V.11.0
"OpenSource Flash Video Splitter" = OpenSource Flash Video Splitter (remove only)
"Orienteering Organiser 9" = Orienteering Organiser 9
"PSPad editor_is1" = PSPad editor
"SIUSCOMM&10C4&800A" = SPORTident USB to UART Bridge Controller
"SpeedWheel Force Feedback" = SpeedWheel Force Feedback
"Splashtop Software Updater" = Splashtop Software Updater
"VLC media player" = VLC media player
"VMCPlayer_is1" = VMCPlayer
"VorbisCodec" = Ogg Vorbis ACM Codec
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"X Codec Pack" = X Codec Pack
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"ZoomPlayer" = Zoom Player (remove only)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 30.7.2014 7:10:30 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP4700> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:12:50 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP5000> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:14:30 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:19 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:19 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:24 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP03> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:16:21 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP01> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:16:21 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP02> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 8:54:47 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 9:22:57 | Computer Name = DAN | Source = Application Error | ID = 1000
Description = Chybující aplikace systemexplorer.exe, verze 5.9.1.5242, chybující
modul kernel32.dll, verze 5.1.2600.6532, adresa chyby 0x00012fd3.
[ OSession Events ]
Error - 12.9.2013 12:59:12 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 169
seconds with 0 seconds of active time. This session ended with a crash.
Error - 17.9.2013 12:54:29 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 211
seconds with 60 seconds of active time. This session ended with a crash.
Error - 10.10.2013 17:58:10 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 111
seconds with 60 seconds of active time. This session ended with a crash.
Error - 4.11.2013 18:31:32 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 92354
seconds with 360 seconds of active time. This session ended with a crash.
Error - 29.11.2013 1:14:58 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 21795
seconds with 420 seconds of active time. This session ended with a crash.
Error - 14.12.2013 14:27:12 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 94
seconds with 0 seconds of active time. This session ended with a crash.
Error - 30.1.2014 16:05:17 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12190
seconds with 0 seconds of active time. This session ended with a crash.
Error - 16.2.2014 13:07:27 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12246
seconds with 1560 seconds of active time. This session ended with a crash.
Error - 15.7.2014 15:49:17 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 31569
seconds with 120 seconds of active time. This session ended with a crash.
Error - 23.7.2014 18:48:13 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10168
seconds with 180 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 30.7.2014 9:23:34 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 30.7.2014 9:23:38 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba NVIDIA Update Service Daemon přestala během spouštění reagovat.
Error - 30.7.2014 17:48:58 | Computer Name = DAN | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000001
při zpracování souboru na svazku HarddiskVolume1. Sledování svazku bylo ukončeno.
Error - 30.7.2014 17:53:12 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 30.7.2014 17:53:37 | Computer Name = DAN | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 30.7.2014 17:59:11 | Computer Name = DAN | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Splashtop® Remote Service.
Error - 30.7.2014 17:59:11 | Computer Name = DAN | Source = Service Control Manager | ID = 7000
Description = Služba Splashtop® Remote Service neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 30.7.2014 18:00:49 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 31.7.2014 4:47:24 | Computer Name = DAN | Source = Service Control Manager | ID = 7034
Description = Služba McAfee SiteAdvisor Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 31.7.2014 5:17:52 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dada\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,57 Gb Available Physical Memory | 28,56% Memory free
3,85 Gb Paging File | 2,37 Gb Available in Paging File | 61,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 137,24 Gb Free Space | 46,04% Space Free | Partition Type: NTFS
Computer Name: DAN | User Name: Dada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\wincmd\WINCMD32.EXE" = C:\wincmd\WINCMD32.EXE:*:Enabled:Windows Commander 32 bit internationale Version, Dateimanager-Ersatz fuer Windows -- (C. Ghisler & Co.)
"C:\Program Files\Canon\DV Messenger\DV Messenger.exe" = C:\Program Files\Canon\DV Messenger\DV Messenger.exe:*:Enabled:Executable -- (Canon Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\WINDOWS\system32\hasplms.exe" = C:\WINDOWS\system32\hasplms.exe:*:Enabled:Sentinel License Manager -- (SafeNet Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE" = C:\Program Files\EPSON\TM-T88V Software\TM88VUTL\TM88VUTL.EXE:*:Enabled:EPSON TM-T88V Utility Ver.1.40 -- (SEIKO EPSON CORPORATION)
"C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe" = C:\Program Files\EPSON\EPSON Advanced Printer Driver 5\PrinterNetworkSetting\APDNetSetting.exe:*:Enabled:Printer Network Setting Ver.5 -- (SEIKO EPSON CORPORATION)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\SRServer.exe:*:Enabled:Splashtop® Streamer -- (Splashtop Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\SRFeature.exe:*:Enabled:Splashtop® GDI Server -- (Splashtop Inc.)
"C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe" = C:\Program Files\Splashtop\Splashtop Remote\Server\DataProxy.exe:*:Enabled:Splashtop® PROXY Server -- (Splashtop Inc.)
"C:\Program Files\Google\Chrome\Application\chrome.exe" = C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome -- (Google Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW(R) Graphics Suite X4
"_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{010C0B4A-DC93-4BB4-893B-BDDE95355A3E}" = Freeware PDF Unlocker
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}" = Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729
"{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}" = Autodesk Content Service
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{094D3055-1F1D-4221-B288-4DD0BE529794}" = Nástroj WD Software Upgrader
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A37EE62-9A58-420D-90CC-4E52153112EE}" = iTunes
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{14866AAD-1F23-39AC-A62B-7091ED1ADE64}" = Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{185F9795-9663-4F13-9EF9-307A282ADB5A}" = ph
"{1C431535-5AB5-47D1-8E36-6C795AF913F7}" = EPSON Port Communication Service
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}" = Apple Application Support
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24B8697C-AE34-472F-A158-1A04B5B7BD30}" = SPORTident Config
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}" = Autodesk Material Library Low Resolution Image Library 2012
"{258FDE4E-EE80-4BD7-ACE1-BDAED5F22F09}" = REALTEK RTL8187 Wireless LAN Driver
"{26A24AE4-039D-4CA4-87B4-2F03217060FF}" = Java 7 Update 60
"{26A24AE4-039D-4CA4-87B4-2F83216034F0}" = Java(TM) 6 Update 34
"{26A24AE4-039D-4CA4-87B4-2F83216043FF}" = Java(TM) 6 Update 43
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2A075BB4-E976-4278-BF3F-E5C6945D84C0}" = bl
"{2A414CBE-CDF3-48C6-A91B-D3D4522F8EB5}" = Sentinel Runtime
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
"{32A3A4F4-B792-11D6-A78A-00B0D0160430}" = Java(TM) SE Development Kit 6 Update 43
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{378E39C3-92F2-4241-AC90-FAF023007D6D}" = Klient Správy přístupových práv v systému Windows s aktualizací Service Pack 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3AB164-964F-419D-A688-810E728B9D7D}" = GalleryImages
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1" = System Explorer 5.9.1
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{41DF6AB7-4F89-478D-8501-D81A7A975D35}" = SP2GalleryImages
"{44A27085-0616-4181-A0C3-81C7ECA17F73}" = CorelDRAW Graphics Suite X4
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}" = Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5783F2D7-A001-0405-0002-0060B0CE6BBA}" = AutoCAD 2012 - Czech
"{5783F2D7-A001-0405-1002-0060B0CE6BBA}" = AutoCAD 2012 Language Pack - Czech
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60ED98A7-BE97-4F26-B32E-5087337C6044}" = EPSON TM Coupon Package
"{6127AB2D-6E7F-422F-8D0C-5D0E24CE843A}" = EPSON APD5 PrinterReg for TM-T88V
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6235D5B2-42F9-46E6-9171-088D1D7FF6EE}" = EPSON APD5 Plugin for TM-T88V
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{65420DC9-306E-4371-905F-F4DC3B418E52}" = Autodesk Material Library Base Resolution Image Library 2012
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1" = Kodek 0.16 CZ
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73EC658D-A1C6-40CA-8E86-E05821BAACE7}" = Java DB 10.6.2.1
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77D28FF5-242F-488A-8215-937D6A4D69E0}" = Adobe AIR
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7CF94476-77F9-401E-BEB5-845285735AAB}" = Windows Live Zabezpečení rodiny
"{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW Graphics SUite X4 - ICA
"{7F05E704-30A6-421A-97A7-8EEB1C7FF012}" = CorelDRAW Graphics Suite X4 - Capture
"{7F05E704-30A6-421A-97A7-8EEB1C7FF013}" = CorelDRAW Graphics Suite X4 - Draw
"{7F05E704-30A6-421A-97A7-8EEB1C7FF014}" = CorelDRAW Graphics Suite X4 - PP
"{7F05E704-30A6-421A-97A7-8EEB1C7FF016}" = CorelDRAW Graphics Suite X4 - Content
"{7F05E704-30A6-421A-97A7-8EEB1C7FF017}" = CorelDRAW Graphics Suite X4 - Filters
"{7F05E704-30A6-421A-97A7-8EEB1C7FF019}" = CorelDRAW Graphics Suite X4 - FontNav
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{896A285E-2DC4-4C73-BEDA-964244FD658A}" = ioTablet
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B3F4499-32E6-470D-8586-E6C03420F889}" = ASUS WiFi-AP Solo
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}" = Autodesk Material Library 2012
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91B33C97-91F8-FFB3-581B-BC952C901685}_is1" = Ashampoo Burning Studio FREE v.1.12.0
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}" = Apple Mobile Device Support
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}" = CorelDRAW Graphics Suite X4 - IPM
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A39EA3C8-7BF3-4FA7-9A67-3D3611BAE59E}_is1" = Convert MOV to AVI 1.0
"{A49BDCBE-590E-43A6-AB77-7C40E499B7C1}" = Autodesk Design Review 2012
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AAB6D0F8-02B3-4E89-B24C-0BB153C21445}" = Windows Presentation Foundation Language Pack (CSY)
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB85A4DB-357F-41B5-94A6-C9A4CBBD791B}" = DV Network Software
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.10) - Czech
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B24839E5-A70C-48AD-B4D9-B9FB46B4B038}_is1" = Hydrogen 0.9.6 preview release for windows
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 140.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 4.11.9
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}" = Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B5751715-EC10-43D9-8C95-62E1368433EF}" = Autodesk Material Library Medium Resolution Image Library 2012
"{B61D21B6-469D-4423-B161-62DB20B8A70E}" = Visual Basic for Applications (R) Core - English
"{B7C5EA94-B96A-41F5-BE95-25D78B486678}" = Splashtop Streamer
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BED27751-CD2A-4C2F-9813-00B9B60C76FE}" = Railroad Tycoon II - Platinum
"{BF439B41-0252-48DE-8B8B-0430CB26A181}" = CorelDRAW Graphics Suite X4 - VBA
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C19B3EB6-B54C-3204-A4DF-88432E0C79F7}" = Microsoft ReportViewer 2010 Redistributable
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{CE6557BF-FA56-4C95-91E3-B8C641679DF0}" = Windows Live Messenger
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D4EEC21C-04F0-4CF4-8078-82C11E38EF11}" = REALTEK RTL8187SE Wireless LAN Driver
"{DB81779E-7CC5-4630-BCFC-754004956444}" = Visual Basic for Applications (R) Core
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DDA36F98-A44D-46F2-88A9-9CDDB8A9625D}" = EPSON TM-T88V Utility Ver.1.40
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E552C39C-C70E-464F-9733-8311331BDD90}" = Jazykový balíček modulu plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}" = Adobe Creative Suite 6 Master Collection
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}" = Modul plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Klient Správy přístupových práv v systému Windows SP2, zpětná kompatibilita
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F4D69A8D-BB5C-4C3D-A1AD-64C24233EDD6}" = Windows Live Essentials
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FB09515C-8E3E-4E0F-A1F2-032F38DEC185}" = Microsoft .NET Framework 3.0 Czech Language Pack
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FEC02973-0781-49C7-9F04-28DA9BAF0372}" = Composite 2012
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFD44E90-AEA4-4D25-AF53-5CE2723E88DA}" = MarketingReg
"{FFF5619F-6669-4EC5-A85E-9994F70A9E5D}" = Autodesk Inventor Fusion 2012
"{FFF7F80F-929E-497F-A112-B070DE816128}" = Jazykový balíček Autodesk Inventor Fusion 2012
"{FFFE7261-2318-4227-B827-E9E05E16DFE5}" = CorelDRAW Graphics Suite X4 - Lang CZ
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"AutoCAD 2012 - Czech" = AutoCAD 2012 - Czech
"Autodesk Design Review 2012" = Autodesk Design Review 2012
"Autodesk Inventor Fusion 2012" = Autodesk Inventor Fusion 2012
"Avast" = avast! Free Antivirus
"Bass Audio Decoder" = Bass Audio Decoder (remove only)
"BDE for Orienteering Organiser" = BDE for Orienteering Organiser
"CCleaner" = CCleaner
"CD Audio Reader Filter" = CD Audio Reader Filter (remove only)
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"Corel Applications" = Corel Applications
"DCoder Image Source" = DCoder Image Source (remove only)
"DirectVobSub" = DirectVobSub (remove only)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Advanced Printer Driver 5 For TM-T88V" = EPSON Advanced Printer Driver for TM-T88V Ver.5
"ESET Online Scanner" = ESET Online Scanner v3
"Gabest MPEG Splitter" = Gabest MPEG Splitter (remove only)
"Google Chrome" = Google Chrome
"HaaliMkx" = Haali Media Splitter
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HPOCR" = HP OCR Software 9.0
"HWiNFO32_is1" = HWiNFO32 Version 2.37
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"InterBase 6 Client Open Edition - 6.0.2.0" = InterBase 6 Client Open Edition - 6.0.2.0
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.0 Czech Language Pack" = Microsoft .NET Framework 3.0 Czech Language Pack
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Modul plug-in Autodesk Inventor Fusion pro aplikaci AutoCAD 2012" = Autodesk Inventor Fusion plug-in for AutoCAD 2012
"MONOGRAM AMR Splitter/Decoder" = MONOGRAM AMR Splitter/Decoder (remove only)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OCAD 9_is1" = OCAD 9.7 Service Update Professional
"OE2010" = OE2010 V.11.0
"OpenSource Flash Video Splitter" = OpenSource Flash Video Splitter (remove only)
"Orienteering Organiser 9" = Orienteering Organiser 9
"PSPad editor_is1" = PSPad editor
"SIUSCOMM&10C4&800A" = SPORTident USB to UART Bridge Controller
"SpeedWheel Force Feedback" = SpeedWheel Force Feedback
"Splashtop Software Updater" = Splashtop Software Updater
"VLC media player" = VLC media player
"VMCPlayer_is1" = VMCPlayer
"VorbisCodec" = Ogg Vorbis ACM Codec
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"X Codec Pack" = X Codec Pack
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"ZoomPlayer" = Zoom Player (remove only)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 30.7.2014 7:10:30 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP4700> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:12:50 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP5000> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:14:30 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:19 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:19 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:15:24 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP03> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:16:21 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP01> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 7:16:21 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP02> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 8:54:47 | Computer Name = DAN | Source = Windows Search Service | ID = 3013
Description = Položka <C:\COMBOFIX\TEMP00> v mapě algoritmu hash nebyla aktualizována.
Kontext:
aplikace , katalog SystemIndex Podrobnosti: Zařízení připojené k systému nefunguje.
(0x8007001f)
Error - 30.7.2014 9:22:57 | Computer Name = DAN | Source = Application Error | ID = 1000
Description = Chybující aplikace systemexplorer.exe, verze 5.9.1.5242, chybující
modul kernel32.dll, verze 5.1.2600.6532, adresa chyby 0x00012fd3.
[ OSession Events ]
Error - 12.9.2013 12:59:12 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 169
seconds with 0 seconds of active time. This session ended with a crash.
Error - 17.9.2013 12:54:29 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 211
seconds with 60 seconds of active time. This session ended with a crash.
Error - 10.10.2013 17:58:10 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 111
seconds with 60 seconds of active time. This session ended with a crash.
Error - 4.11.2013 18:31:32 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 92354
seconds with 360 seconds of active time. This session ended with a crash.
Error - 29.11.2013 1:14:58 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 21795
seconds with 420 seconds of active time. This session ended with a crash.
Error - 14.12.2013 14:27:12 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 94
seconds with 0 seconds of active time. This session ended with a crash.
Error - 30.1.2014 16:05:17 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12190
seconds with 0 seconds of active time. This session ended with a crash.
Error - 16.2.2014 13:07:27 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12246
seconds with 1560 seconds of active time. This session ended with a crash.
Error - 15.7.2014 15:49:17 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 31569
seconds with 120 seconds of active time. This session ended with a crash.
Error - 23.7.2014 18:48:13 | Computer Name = DAN | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10168
seconds with 180 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 30.7.2014 9:23:34 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 30.7.2014 9:23:38 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba NVIDIA Update Service Daemon přestala během spouštění reagovat.
Error - 30.7.2014 17:48:58 | Computer Name = DAN | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000001
při zpracování souboru na svazku HarddiskVolume1. Sledování svazku bylo ukončeno.
Error - 30.7.2014 17:53:12 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 30.7.2014 17:53:37 | Computer Name = DAN | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 30.7.2014 17:59:11 | Computer Name = DAN | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Splashtop® Remote Service.
Error - 30.7.2014 17:59:11 | Computer Name = DAN | Source = Service Control Manager | ID = 7000
Description = Služba Splashtop® Remote Service neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 30.7.2014 18:00:49 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
Error - 31.7.2014 4:47:24 | Computer Name = DAN | Source = Service Control Manager | ID = 7034
Description = Služba McAfee SiteAdvisor Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 31.7.2014 5:17:52 | Computer Name = DAN | Source = Service Control Manager | ID = 7022
Description = Služba Autodesk Content Service přestala během spouštění reagovat.
< End of report >
Re: Prosím o kontrolu logu
Napiste mi velikost adresare plochy (C:\Documents and Settings\Dada\Plocha) Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTL Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
ethukhmy
JavaQuickStarterService
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem
gusvc
SwitchBoard
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
:otl
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes,Backup.Old.DefaultScope = {89A56908-AB2E-42F5-BBBE-82C4D50C333E}
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\SearchScopes\{4E61DF84-5A49-49DC-951B-ED2602092BA3}: "URL" = http://www.mysearchresults.com/search?c=2402&t=15&q={searchTerms}
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O15 - HKU\S-1-5-21-3612128790-3562664508-856553003-1005\..Trusted Domains: facebook.com ([www] https in Důvěryhodné servery)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Reg Error: Key error.)
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} http://download.seznam.cz/listicka/toolbar2007.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
[2014.07.30 20:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dada\Data aplikací\Malwarebytes
[2014.07.30 20:37:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.07.29 03:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\Avast AntiVirus 6.0.11 + Serial Keys
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2012.10.01 01:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dada\Data aplikací\ESET
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[278 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\DRVSTORE\*.tmp files -> C:\WINDOWS\system32\DRVSTORE\*.tmp -> ]
[1 C:\WINDOWS\twain_32\*.tmp files -> C:\WINDOWS\twain_32\*.tmp -> ]
@Alternate Data Stream - 21 bytes -> C:\.apdisk:com.apple.quarantine
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ADB1368B
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=-
"Adobe ARM"=-
"SwitchBoard"=-
"NvMediaCenter"=-
"QuickTime Task"=-
"SystemExplorerAutoStart"=-
"iTunesHelper"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SystemExplorerAutoStart"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFSplash]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
Velikost adresáře plochy je 4 879 608
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 389 bytes
User: All Users
User: Dada
->Temp folder emptied: 13843139 bytes
->Temporary Internet Files folder emptied: 4786180 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 101012982 bytes
->Flash cache emptied: 343 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 98438 bytes
->Flash cache emptied: 57700 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 82054 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49286 bytes
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 109568 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 124508 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34306 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 115,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Dada
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
User: UpdatusUser
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service ethukhmy stopped successfully!
Service ethukhmy deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service SwitchBoard stopped successfully!
Service SwitchBoard deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\{4E61DF84-5A49-49DC-951B-ED2602092BA3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E61DF84-5A49-49DC-951B-ED2602092BA3}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\facebook.com\www\ deleted successfully.
Starting removal of ActiveX control {166B1BCA-3F9C-11CF-8075-444553540000}
C:\WINDOWS\Downloaded Program Files\setup.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{166B1BCA-3F9C-11CF-8075-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Starting removal of ActiveX control {3190CE28-0B6E-4133-A7D3-87D29CB92120}
C:\WINDOWS\Downloaded Program Files\toolbar.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes folder moved successfully.
C:\Program Files\Avast AntiVirus 6.0.11 + Serial Keys folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\ESET\ESET Smart Security folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\ESET folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP10F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1923.tmp\System.Drawing.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1923.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B58.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1CBA.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20E3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F8.tmp\PresentationBuildTasks.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20FE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP29.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B8.tmp\System.Xml.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2BC.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E2E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E63.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP35D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP368.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP37D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3AB.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3C2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP454.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4EF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP727.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI1016.tmp deleted successfully.
C:\WINDOWS\Installer\MSI102B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1037.tmp deleted successfully.
C:\WINDOWS\Installer\MSI106E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10BA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI116.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1167.tmp deleted successfully.
C:\WINDOWS\Installer\MSI117.tmp deleted successfully.
C:\WINDOWS\Installer\MSI11D6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1222.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1228.tmp deleted successfully.
C:\WINDOWS\Installer\MSI127.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI132.tmp deleted successfully.
C:\WINDOWS\Installer\MSI135D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI136.tmp deleted successfully.
C:\WINDOWS\Installer\MSI137.tmp deleted successfully.
C:\WINDOWS\Installer\MSI137E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI140.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1439.tmp deleted successfully.
C:\WINDOWS\Installer\MSI151.tmp deleted successfully.
C:\WINDOWS\Installer\MSI158.tmp deleted successfully.
C:\WINDOWS\Installer\MSI15C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI165.tmp deleted successfully.
C:\WINDOWS\Installer\MSI168.tmp deleted successfully.
C:\WINDOWS\Installer\MSI169.tmp deleted successfully.
C:\WINDOWS\Installer\MSI16B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI16EC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17E5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI199.tmp deleted successfully.
C:\WINDOWS\Installer\MSI19E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A52.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AD9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B38.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1D68.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1F8D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1FD1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI207C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI222.tmp deleted successfully.
C:\WINDOWS\Installer\MSI225.tmp deleted successfully.
C:\WINDOWS\Installer\MSI227.tmp deleted successfully.
C:\WINDOWS\Installer\MSI22C8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI230.tmp deleted successfully.
C:\WINDOWS\Installer\MSI239.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2441.tmp deleted successfully.
C:\WINDOWS\Installer\MSI247.tmp deleted successfully.
C:\WINDOWS\Installer\MSI249.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI25.tmp deleted successfully.
C:\WINDOWS\Installer\MSI25F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI260.tmp deleted successfully.
C:\WINDOWS\Installer\MSI261.tmp deleted successfully.
C:\WINDOWS\Installer\MSI265.tmp deleted successfully.
C:\WINDOWS\Installer\MSI265F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI267.tmp deleted successfully.
C:\WINDOWS\Installer\MSI269.tmp deleted successfully.
C:\WINDOWS\Installer\MSI27.tmp deleted successfully.
C:\WINDOWS\Installer\MSI270.tmp deleted successfully.
C:\WINDOWS\Installer\MSI275.tmp deleted successfully.
C:\WINDOWS\Installer\MSI277.tmp deleted successfully.
C:\WINDOWS\Installer\MSI278.tmp deleted successfully.
C:\WINDOWS\Installer\MSI280.tmp deleted successfully.
C:\WINDOWS\Installer\MSI283.tmp deleted successfully.
C:\WINDOWS\Installer\MSI288.tmp deleted successfully.
C:\WINDOWS\Installer\MSI29.tmp deleted successfully.
C:\WINDOWS\Installer\MSI291.tmp deleted successfully.
C:\WINDOWS\Installer\MSI292.tmp deleted successfully.
C:\WINDOWS\Installer\MSI296.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BBE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2E93.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F7E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI305.tmp deleted successfully.
C:\WINDOWS\Installer\MSI309.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30F9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI312.tmp deleted successfully.
C:\WINDOWS\Installer\MSI315.tmp deleted successfully.
C:\WINDOWS\Installer\MSI316.tmp deleted successfully.
C:\WINDOWS\Installer\MSI31AA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI321.tmp deleted successfully.
C:\WINDOWS\Installer\MSI323.tmp deleted successfully.
C:\WINDOWS\Installer\MSI327.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33.tmp deleted successfully.
C:\WINDOWS\Installer\MSI330.tmp deleted successfully.
C:\WINDOWS\Installer\MSI331.tmp deleted successfully.
C:\WINDOWS\Installer\MSI335.tmp deleted successfully.
C:\WINDOWS\Installer\MSI337.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3409.tmp deleted successfully.
C:\WINDOWS\Installer\MSI34E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI35.tmp deleted successfully.
C:\WINDOWS\Installer\MSI351.tmp deleted successfully.
C:\WINDOWS\Installer\MSI35C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI362.tmp deleted successfully.
C:\WINDOWS\Installer\MSI364.tmp deleted successfully.
C:\WINDOWS\Installer\MSI368.tmp deleted successfully.
C:\WINDOWS\Installer\MSI36E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI370.tmp deleted successfully.
C:\WINDOWS\Installer\MSI375.tmp deleted successfully.
C:\WINDOWS\Installer\MSI379.tmp deleted successfully.
C:\WINDOWS\Installer\MSI382.tmp deleted successfully.
C:\WINDOWS\Installer\MSI383.tmp deleted successfully.
C:\WINDOWS\Installer\MSI386E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI38D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI39.tmp deleted successfully.
C:\WINDOWS\Installer\MSI391.tmp deleted successfully.
C:\WINDOWS\Installer\MSI395.tmp deleted successfully.
C:\WINDOWS\Installer\MSI399.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3BA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI40.tmp deleted successfully.
C:\WINDOWS\Installer\MSI402.tmp deleted successfully.
C:\WINDOWS\Installer\MSI40EC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI41.tmp deleted successfully.
C:\WINDOWS\Installer\MSI411.tmp deleted successfully.
C:\WINDOWS\Installer\MSI417.tmp deleted successfully.
C:\WINDOWS\Installer\MSI42D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI443.tmp deleted successfully.
C:\WINDOWS\Installer\MSI448.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45.tmp deleted successfully.
C:\WINDOWS\Installer\MSI451.tmp deleted successfully.
C:\WINDOWS\Installer\MSI452.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI460.tmp deleted successfully.
C:\WINDOWS\Installer\MSI461.tmp deleted successfully.
C:\WINDOWS\Installer\MSI465.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47.tmp deleted successfully.
C:\WINDOWS\Installer\MSI475.tmp deleted successfully.
C:\WINDOWS\Installer\MSI478.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4AB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4E3E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI50.tmp deleted successfully.
C:\WINDOWS\Installer\MSI515.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI54.tmp deleted successfully.
C:\WINDOWS\Installer\MSI56.tmp deleted successfully.
C:\WINDOWS\Installer\MSI56C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI57.tmp deleted successfully.
C:\WINDOWS\Installer\MSI58.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5CF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5F8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5FD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI624.tmp deleted successfully.
C:\WINDOWS\Installer\MSI63D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI64.tmp deleted successfully.
C:\WINDOWS\Installer\MSI648.tmp deleted successfully.
C:\WINDOWS\Installer\MSI65.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI673.tmp deleted successfully.
C:\WINDOWS\Installer\MSI69.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI71.tmp deleted successfully.
C:\WINDOWS\Installer\MSI72.tmp deleted successfully.
C:\WINDOWS\Installer\MSI729.tmp deleted successfully.
C:\WINDOWS\Installer\MSI74.tmp deleted successfully.
C:\WINDOWS\Installer\MSI75.tmp deleted successfully.
C:\WINDOWS\Installer\MSI76.tmp deleted successfully.
C:\WINDOWS\Installer\MSI78.tmp deleted successfully.
C:\WINDOWS\Installer\MSI794.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7AC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7BC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI80.tmp deleted successfully.
C:\WINDOWS\Installer\MSI83.tmp deleted successfully.
C:\WINDOWS\Installer\MSI85.tmp deleted successfully.
C:\WINDOWS\Installer\MSI86.tmp deleted successfully.
C:\WINDOWS\Installer\MSI876.tmp deleted successfully.
C:\WINDOWS\Installer\MSI878.tmp deleted successfully.
C:\WINDOWS\Installer\MSI89E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8C0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI92.tmp deleted successfully.
C:\WINDOWS\Installer\MSI94.tmp deleted successfully.
C:\WINDOWS\Installer\MSI95.tmp deleted successfully.
C:\WINDOWS\Installer\MSI99.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9C8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9D0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9ED.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9F.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA07.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA1D.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA33.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA36.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA97.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAC0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIACB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIACD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB77.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB98.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBFA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC28.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC59.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC7.tmp deleted successfully.
C:\WINDOWS\Installer\MSID2.tmp deleted successfully.
C:\WINDOWS\Installer\MSID57.tmp deleted successfully.
C:\WINDOWS\Installer\MSID89.tmp deleted successfully.
C:\WINDOWS\Installer\MSID9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDCA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE05.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE17B.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEE2.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEE2E.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEED.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF05.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF0F.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFA1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFB6.tmp deleted successfully.
C:\WINDOWS\system32\DRVSTORE\DFx33B.tmp deleted successfully.
C:\WINDOWS\twain_32\hpqgnds2.tmp deleted successfully.
ADS C:\.apdisk:com.apple.quarantine deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:ADB1368B deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SystemExplorerAutoStart deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SystemExplorerAutoStart deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFSplash\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk\ deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 07312014_145121
Files\Folders moved on Reboot...
C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{336B943A-0DEB-471B-A732-BEA83E680BC7}.tmp moved successfully.
C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{6A9E68CE-02C5-4E30-BF43-354794417CC7}.tmp moved successfully.
File\Folder C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{946B45B2-2E4D-436B-AE55-F3F8654F0AC0}.tmp not found!
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File\Folder C:\WINDOWS\temp\_avast_\Webshlock.txt not found!
File move failed. C:\WINDOWS\temp\hlktmp scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 389 bytes
User: All Users
User: Dada
->Temp folder emptied: 13843139 bytes
->Temporary Internet Files folder emptied: 4786180 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 101012982 bytes
->Flash cache emptied: 343 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 98438 bytes
->Flash cache emptied: 57700 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 82054 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49286 bytes
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 109568 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 124508 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34306 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 115,00 mb
[EMPTYFLASH]
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Dada
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
User: UpdatusUser
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service ethukhmy stopped successfully!
Service ethukhmy deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service SwitchBoard stopped successfully!
Service SwitchBoard deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\SearchScopes\{4E61DF84-5A49-49DC-951B-ED2602092BA3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E61DF84-5A49-49DC-951B-ED2602092BA3}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry key HKEY_USERS\S-1-5-21-3612128790-3562664508-856553003-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\facebook.com\www\ deleted successfully.
Starting removal of ActiveX control {166B1BCA-3F9C-11CF-8075-444553540000}
C:\WINDOWS\Downloaded Program Files\setup.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{166B1BCA-3F9C-11CF-8075-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{166B1BCA-3F9C-11CF-8075-444553540000}\ not found.
Starting removal of ActiveX control {3190CE28-0B6E-4133-A7D3-87D29CB92120}
C:\WINDOWS\Downloaded Program Files\toolbar.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3190CE28-0B6E-4133-A7D3-87D29CB92120}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\Malwarebytes folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes folder moved successfully.
C:\Program Files\Avast AntiVirus 6.0.11 + Serial Keys folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\ESET\ESET Smart Security folder moved successfully.
C:\Documents and Settings\Dada\Data aplikací\ESET folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP10F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1923.tmp\System.Drawing.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1923.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B58.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1CBA.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20E3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F8.tmp\PresentationBuildTasks.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20F8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20FE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP29.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2AF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B8.tmp\System.Xml.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2BC.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E2E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E63.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP35D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP368.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP37D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3AB.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3C2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP454.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4EF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP727.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI1016.tmp deleted successfully.
C:\WINDOWS\Installer\MSI102B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1037.tmp deleted successfully.
C:\WINDOWS\Installer\MSI106E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10BA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI116.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1167.tmp deleted successfully.
C:\WINDOWS\Installer\MSI117.tmp deleted successfully.
C:\WINDOWS\Installer\MSI11D6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1222.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1228.tmp deleted successfully.
C:\WINDOWS\Installer\MSI127.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI132.tmp deleted successfully.
C:\WINDOWS\Installer\MSI135D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI136.tmp deleted successfully.
C:\WINDOWS\Installer\MSI137.tmp deleted successfully.
C:\WINDOWS\Installer\MSI137E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI140.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1439.tmp deleted successfully.
C:\WINDOWS\Installer\MSI151.tmp deleted successfully.
C:\WINDOWS\Installer\MSI158.tmp deleted successfully.
C:\WINDOWS\Installer\MSI15C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI165.tmp deleted successfully.
C:\WINDOWS\Installer\MSI168.tmp deleted successfully.
C:\WINDOWS\Installer\MSI169.tmp deleted successfully.
C:\WINDOWS\Installer\MSI16B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI16EC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17E5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI199.tmp deleted successfully.
C:\WINDOWS\Installer\MSI19E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A52.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AD9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B38.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B3E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1D68.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1F8D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1FD1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI207C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI222.tmp deleted successfully.
C:\WINDOWS\Installer\MSI225.tmp deleted successfully.
C:\WINDOWS\Installer\MSI227.tmp deleted successfully.
C:\WINDOWS\Installer\MSI22C8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI230.tmp deleted successfully.
C:\WINDOWS\Installer\MSI239.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2441.tmp deleted successfully.
C:\WINDOWS\Installer\MSI247.tmp deleted successfully.
C:\WINDOWS\Installer\MSI249.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI25.tmp deleted successfully.
C:\WINDOWS\Installer\MSI25F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI260.tmp deleted successfully.
C:\WINDOWS\Installer\MSI261.tmp deleted successfully.
C:\WINDOWS\Installer\MSI265.tmp deleted successfully.
C:\WINDOWS\Installer\MSI265F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI267.tmp deleted successfully.
C:\WINDOWS\Installer\MSI269.tmp deleted successfully.
C:\WINDOWS\Installer\MSI27.tmp deleted successfully.
C:\WINDOWS\Installer\MSI270.tmp deleted successfully.
C:\WINDOWS\Installer\MSI275.tmp deleted successfully.
C:\WINDOWS\Installer\MSI277.tmp deleted successfully.
C:\WINDOWS\Installer\MSI278.tmp deleted successfully.
C:\WINDOWS\Installer\MSI280.tmp deleted successfully.
C:\WINDOWS\Installer\MSI283.tmp deleted successfully.
C:\WINDOWS\Installer\MSI288.tmp deleted successfully.
C:\WINDOWS\Installer\MSI29.tmp deleted successfully.
C:\WINDOWS\Installer\MSI291.tmp deleted successfully.
C:\WINDOWS\Installer\MSI292.tmp deleted successfully.
C:\WINDOWS\Installer\MSI296.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BBE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2E93.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F7E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI305.tmp deleted successfully.
C:\WINDOWS\Installer\MSI309.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30F9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI312.tmp deleted successfully.
C:\WINDOWS\Installer\MSI315.tmp deleted successfully.
C:\WINDOWS\Installer\MSI316.tmp deleted successfully.
C:\WINDOWS\Installer\MSI31AA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI321.tmp deleted successfully.
C:\WINDOWS\Installer\MSI323.tmp deleted successfully.
C:\WINDOWS\Installer\MSI327.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33.tmp deleted successfully.
C:\WINDOWS\Installer\MSI330.tmp deleted successfully.
C:\WINDOWS\Installer\MSI331.tmp deleted successfully.
C:\WINDOWS\Installer\MSI335.tmp deleted successfully.
C:\WINDOWS\Installer\MSI337.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3409.tmp deleted successfully.
C:\WINDOWS\Installer\MSI34E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI35.tmp deleted successfully.
C:\WINDOWS\Installer\MSI351.tmp deleted successfully.
C:\WINDOWS\Installer\MSI35C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI362.tmp deleted successfully.
C:\WINDOWS\Installer\MSI364.tmp deleted successfully.
C:\WINDOWS\Installer\MSI368.tmp deleted successfully.
C:\WINDOWS\Installer\MSI36E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI370.tmp deleted successfully.
C:\WINDOWS\Installer\MSI375.tmp deleted successfully.
C:\WINDOWS\Installer\MSI379.tmp deleted successfully.
C:\WINDOWS\Installer\MSI382.tmp deleted successfully.
C:\WINDOWS\Installer\MSI383.tmp deleted successfully.
C:\WINDOWS\Installer\MSI386E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI38D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI39.tmp deleted successfully.
C:\WINDOWS\Installer\MSI391.tmp deleted successfully.
C:\WINDOWS\Installer\MSI395.tmp deleted successfully.
C:\WINDOWS\Installer\MSI399.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3BA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI40.tmp deleted successfully.
C:\WINDOWS\Installer\MSI402.tmp deleted successfully.
C:\WINDOWS\Installer\MSI40EC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI41.tmp deleted successfully.
C:\WINDOWS\Installer\MSI411.tmp deleted successfully.
C:\WINDOWS\Installer\MSI417.tmp deleted successfully.
C:\WINDOWS\Installer\MSI42D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI443.tmp deleted successfully.
C:\WINDOWS\Installer\MSI448.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45.tmp deleted successfully.
C:\WINDOWS\Installer\MSI451.tmp deleted successfully.
C:\WINDOWS\Installer\MSI452.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI460.tmp deleted successfully.
C:\WINDOWS\Installer\MSI461.tmp deleted successfully.
C:\WINDOWS\Installer\MSI465.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47.tmp deleted successfully.
C:\WINDOWS\Installer\MSI475.tmp deleted successfully.
C:\WINDOWS\Installer\MSI478.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4AB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4E3E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI50.tmp deleted successfully.
C:\WINDOWS\Installer\MSI515.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI54.tmp deleted successfully.
C:\WINDOWS\Installer\MSI56.tmp deleted successfully.
C:\WINDOWS\Installer\MSI56C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI57.tmp deleted successfully.
C:\WINDOWS\Installer\MSI58.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5CF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5F8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5FD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI624.tmp deleted successfully.
C:\WINDOWS\Installer\MSI63D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI64.tmp deleted successfully.
C:\WINDOWS\Installer\MSI648.tmp deleted successfully.
C:\WINDOWS\Installer\MSI65.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI673.tmp deleted successfully.
C:\WINDOWS\Installer\MSI69.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI71.tmp deleted successfully.
C:\WINDOWS\Installer\MSI72.tmp deleted successfully.
C:\WINDOWS\Installer\MSI729.tmp deleted successfully.
C:\WINDOWS\Installer\MSI74.tmp deleted successfully.
C:\WINDOWS\Installer\MSI75.tmp deleted successfully.
C:\WINDOWS\Installer\MSI76.tmp deleted successfully.
C:\WINDOWS\Installer\MSI78.tmp deleted successfully.
C:\WINDOWS\Installer\MSI794.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7AC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7BC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI80.tmp deleted successfully.
C:\WINDOWS\Installer\MSI83.tmp deleted successfully.
C:\WINDOWS\Installer\MSI85.tmp deleted successfully.
C:\WINDOWS\Installer\MSI86.tmp deleted successfully.
C:\WINDOWS\Installer\MSI876.tmp deleted successfully.
C:\WINDOWS\Installer\MSI878.tmp deleted successfully.
C:\WINDOWS\Installer\MSI89E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8C0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI92.tmp deleted successfully.
C:\WINDOWS\Installer\MSI94.tmp deleted successfully.
C:\WINDOWS\Installer\MSI95.tmp deleted successfully.
C:\WINDOWS\Installer\MSI99.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9C8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9D0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9ED.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9F.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA07.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA1D.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA33.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA36.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA97.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAC0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIACB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIACD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB77.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB98.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBFA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC28.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC59.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC7.tmp deleted successfully.
C:\WINDOWS\Installer\MSID2.tmp deleted successfully.
C:\WINDOWS\Installer\MSID57.tmp deleted successfully.
C:\WINDOWS\Installer\MSID89.tmp deleted successfully.
C:\WINDOWS\Installer\MSID9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDCA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE05.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE17B.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEE2.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEE2E.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEED.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF05.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF0F.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFA1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFB6.tmp deleted successfully.
C:\WINDOWS\system32\DRVSTORE\DFx33B.tmp deleted successfully.
C:\WINDOWS\twain_32\hpqgnds2.tmp deleted successfully.
ADS C:\.apdisk:com.apple.quarantine deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:ADB1368B deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SystemExplorerAutoStart deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SystemExplorerAutoStart deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFSplash\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk\ deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 07312014_145121
Files\Folders moved on Reboot...
C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{336B943A-0DEB-471B-A732-BEA83E680BC7}.tmp moved successfully.
C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{6A9E68CE-02C5-4E30-BF43-354794417CC7}.tmp moved successfully.
File\Folder C:\Documents and Settings\Dada\Local Settings\Temporary Internet Files\Content.Word\~WRS{946B45B2-2E4D-436B-AE55-F3F8654F0AC0}.tmp not found!
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File\Folder C:\WINDOWS\temp\_avast_\Webshlock.txt not found!
File move failed. C:\WINDOWS\temp\hlktmp scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Prosím o kontrolu logu
Kliknete na START -> Spustit -> napiste msconfig -> OKV okne najdete zalozku Po spuštění a povypinejte vse, co nepotrebujete aby se spoustelo hned pri startu pc. Tedy to, co si muzete spustit rucne az v pripade potreby.
vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
Tak zatím se defragmentuje disk, ale je jen z 1% fragmentován (nedávno jsem ji prováděl).
Každopádně se zapínání/vypínání PC poměrně urychlilo. Ale stále je trošku pomalejší náběh aplikací, aj. především Chromu.
Jinak díky čistce se vymazalo přes 8 GB dat, což mi potěšilo.
Pokud byste měl ještě nějaký tip, napište.
Každopádně se zapínání/vypínání PC poměrně urychlilo. Ale stále je trošku pomalejší náběh aplikací, aj. především Chromu.
Jinak díky čistce se vymazalo přes 8 GB dat, což mi potěšilo.
Pokud byste měl ještě nějaký tip, napište.
Re: Prosím o kontrolu logu
Koukneme tedy hloubeji.
Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)
Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!
Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte ComboFix.
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku
Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.) Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc! Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte ComboFix.
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradkuPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
Po defragmentaci provedu a hodím to sem. Počítám, že dnes pozdě večer nebo zítra.
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
ComboFix 14-07-31.02 - Dada 31.07.2014 22:20:13.8.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1388 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dada\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-28 do 2014-07-31 )))))))))))))))))))))))))))))))
.
.
2014-07-31 14:58 . 2014-07-31 14:58 -------- d-----w- c:\program files\Defraggler
2014-07-31 09:22 . 2014-07-31 09:22 -------- d-----w- c:\documents and settings\Dada\Data aplikací\MPC-HC
2014-07-30 23:51 . 2014-07-30 23:53 -------- d-----w- c:\program files\X Codec Pack
2014-07-30 23:36 . 2014-07-30 23:36 -------- d-----w- c:\program files\Kodek CZ
2014-07-30 23:23 . 2014-07-30 23:23 -------- d-----w- c:\program files\Convert MOV to AVI
2014-07-30 13:31 . 2014-07-30 13:31 -------- d-----w- c:\documents and settings\Dada\Data aplikací\AVAST Software
2014-07-30 13:30 . 2014-07-30 13:30 -------- d-----w- c:\windows\jumpshot.com
2014-07-30 13:30 . 2014-07-30 13:29 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-30 13:30 . 2014-07-30 13:29 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-30 13:30 . 2014-07-30 13:29 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-30 13:30 . 2014-07-30 13:30 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-30 13:30 . 2014-07-30 13:29 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-30 13:30 . 2014-07-30 13:29 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-30 13:30 . 2014-07-30 13:29 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-30 13:30 . 2014-07-30 13:29 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-30 13:29 . 2014-07-30 13:29 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-30 13:29 . 2014-07-30 13:29 43152 ----a-w- c:\windows\avastSS.scr
2014-07-30 13:26 . 2014-07-30 13:26 -------- d-----w- c:\program files\AVAST Software
2014-07-30 12:31 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-30 11:29 . 2014-07-31 14:15 -------- d-----w- c:\program files\trend micro
2014-07-29 05:01 . 2014-07-29 05:01 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2014-07-28 23:45 . 2014-07-28 23:45 -------- d-----w- c:\documents and settings\Dada\Local Settings\Data aplikací\backburner
2014-07-24 13:20 . 2014-07-29 00:18 -------- d-----w- c:\documents and settings\Dada\.hydrogen
2014-07-24 13:19 . 2014-07-24 13:35 -------- d-----w- c:\program files\Hydrogen
2014-07-15 08:31 . 2014-07-15 08:31 -------- d-----w- c:\program files\iPod
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\program files\iTunes
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-13 22:06 . 2014-07-13 22:06 368376 ----a-w- c:\windows\system32\cdxareader.ax
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-30 13:44 . 2012-04-01 09:35 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-30 13:44 . 2011-05-17 11:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-27 20:05 . 2009-11-17 22:10 3140 --sha-w- c:\documents and settings\All Users\Data aplikací\KGyGaAvL.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-30 13:29 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ioTablet"="c:\genius\ioTablet\gTabTaskBar.exe" [2011-02-25 49152]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-06-21 15677728]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-21 2586912]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-07-03 43816]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-31 4085896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Dada\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-7-21 35464216]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
ASUS WiFi-AP Solo.lnk - c:\program files\ASUS WiFi-AP Solo\RtWLan.exe /H [2009-2-23 995328]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
Select a coupon.lnk - c:\program files\EPSON\TMCommandEmulator\PopupWindow.exe [2014-6-2 1628160]
TM-T88V Utility(Automatic Restore).lnk - c:\program files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe [2014-6-2 224896]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-10-04 16:14 1626112 ----a-w- c:\windows\system32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-11-06 09:50 16855552 -c--a-r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2007-10-09 19:02 1036288 ----a-w- c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\wincmd\\WINCMD32.EXE"=
"c:\\Program Files\\Canon\\DV Messenger\\DV Messenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\Dada\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\WINDOWS\\system32\\hasplms.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\EPSON\\TM-T88V Software\\TM88VUTL\\TM88VUTL.EXE"=
"c:\\Program Files\\EPSON\\EPSON Advanced Printer Driver 5\\PrinterNetworkSetting\\APDNetSetting.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRServer.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRFeature.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\DataProxy.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [30.7.2014 15:30 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [30.7.2014 15:30 192352]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [30.7.2014 15:30 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [30.7.2014 15:30 414520]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [30.7.2014 15:30 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [30.7.2014 15:30 67824]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2.2.2011 15:08 18656]
R2 EPSON_Device_Control_Log_Service;EPSON Device Control Log Service;c:\program files\EPSON\portcommunicationservice\DeviceControlLog.exe [29.11.2012 19:15 333824]
R2 EPSON_PCS_Parallel_Port_Driver;EPSON PCS Parallel Port Driver;c:\windows\system32\drivers\pcslpt.sys [29.11.2012 19:12 19592]
R2 EPSON_Port_Communication_Service;EPSON Port Communication Service;c:\program files\EPSON\portcommunicationservice\PCSVC.exe [29.11.2012 19:16 433152]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files\HWiNFO32\HWiNFO32.SYS [23.2.2009 19:46 16872]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [7.7.2013 22:16 12216]
R2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files\Splashtop\Splashtop Remote\Server\SRService.exe [15.5.2014 14:56 790880]
R2 SSUService;Splashtop Software Updater Service;c:\program files\Splashtop\Splashtop Software Updater\SSUService.exe [9.10.2013 5:47 609056]
R3 ioFakDrv;ioVirtual Device;c:\windows\system32\drivers\ioFakDrv.sys [28.12.2012 21:22 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer;c:\windows\system32\drivers\ioFakMap.sys [28.12.2012 21:22 10624]
R3 ioTablet;Tablet Minidriver for ioTablet;c:\windows\system32\drivers\ioTablet.sys [28.12.2012 21:22 34696]
R3 ioTblMap;Mini Mapper for ioCentre;c:\windows\system32\drivers\ioTblMap.sys [28.12.2012 21:22 10632]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [14.12.2007 9:51 332928]
R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [23.2.2009 20:54 13532]
S3 ACCSKMD;Canon Camera Storage Device;c:\windows\system32\drivers\accskmd.sys [13.5.2003 20:50 32640]
S3 cpuz134;cpuz134;\??\c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys --> c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [?]
S3 imhidusb;Immersion's HID USB Driver;c:\windows\system32\drivers\ImHidUsb.sys [25.2.2008 23:09 30772]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [24.12.2011 21:09 18944]
S3 SystemExplorerHelpService;System Explorer Service;c:\program files\System Explorer\service\SystemExplorerService.exe [8.1.2013 20:35 567256]
S3 TMUSB;EPSON USB Device Driver for TM/BA/EU Printers;c:\windows\system32\drivers\TMUSBXP.sys [2.6.2014 15:05 49408]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [25.8.2012 1:23 11520]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - SJYPKT
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-30 13:48 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-31 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-30 13:29]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
mStart Page = www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-31 23:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1044)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'lsass.exe'(1116)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'explorer.exe'(1704)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2014-07-31 23:08:54
ComboFix-quarantined-files.txt 2014-07-31 21:08
.
Před spuštěním: Volných bajtů: 156 389 560 320
Po spuštění: Volných bajtů: 156 342 530 048
.
- - End Of File - - 90D682234FCB58F86820CCA4D1EAFD48
413FC2A0C716421B3158746D63736515
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1388 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dada\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-28 do 2014-07-31 )))))))))))))))))))))))))))))))
.
.
2014-07-31 14:58 . 2014-07-31 14:58 -------- d-----w- c:\program files\Defraggler
2014-07-31 09:22 . 2014-07-31 09:22 -------- d-----w- c:\documents and settings\Dada\Data aplikací\MPC-HC
2014-07-30 23:51 . 2014-07-30 23:53 -------- d-----w- c:\program files\X Codec Pack
2014-07-30 23:36 . 2014-07-30 23:36 -------- d-----w- c:\program files\Kodek CZ
2014-07-30 23:23 . 2014-07-30 23:23 -------- d-----w- c:\program files\Convert MOV to AVI
2014-07-30 13:31 . 2014-07-30 13:31 -------- d-----w- c:\documents and settings\Dada\Data aplikací\AVAST Software
2014-07-30 13:30 . 2014-07-30 13:30 -------- d-----w- c:\windows\jumpshot.com
2014-07-30 13:30 . 2014-07-30 13:29 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-30 13:30 . 2014-07-30 13:29 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-30 13:30 . 2014-07-30 13:29 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-30 13:30 . 2014-07-30 13:30 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-30 13:30 . 2014-07-30 13:29 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-30 13:30 . 2014-07-30 13:29 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-30 13:30 . 2014-07-30 13:29 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-30 13:30 . 2014-07-30 13:29 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-30 13:29 . 2014-07-30 13:29 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-30 13:29 . 2014-07-30 13:29 43152 ----a-w- c:\windows\avastSS.scr
2014-07-30 13:26 . 2014-07-30 13:26 -------- d-----w- c:\program files\AVAST Software
2014-07-30 12:31 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-30 11:29 . 2014-07-31 14:15 -------- d-----w- c:\program files\trend micro
2014-07-29 05:01 . 2014-07-29 05:01 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2014-07-28 23:45 . 2014-07-28 23:45 -------- d-----w- c:\documents and settings\Dada\Local Settings\Data aplikací\backburner
2014-07-24 13:20 . 2014-07-29 00:18 -------- d-----w- c:\documents and settings\Dada\.hydrogen
2014-07-24 13:19 . 2014-07-24 13:35 -------- d-----w- c:\program files\Hydrogen
2014-07-15 08:31 . 2014-07-15 08:31 -------- d-----w- c:\program files\iPod
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\program files\iTunes
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-13 22:06 . 2014-07-13 22:06 368376 ----a-w- c:\windows\system32\cdxareader.ax
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-30 13:44 . 2012-04-01 09:35 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-30 13:44 . 2011-05-17 11:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-27 20:05 . 2009-11-17 22:10 3140 --sha-w- c:\documents and settings\All Users\Data aplikací\KGyGaAvL.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-30 13:29 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ioTablet"="c:\genius\ioTablet\gTabTaskBar.exe" [2011-02-25 49152]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-06-21 15677728]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-21 2586912]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-07-03 43816]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-31 4085896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Dada\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-7-21 35464216]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
ASUS WiFi-AP Solo.lnk - c:\program files\ASUS WiFi-AP Solo\RtWLan.exe /H [2009-2-23 995328]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
Select a coupon.lnk - c:\program files\EPSON\TMCommandEmulator\PopupWindow.exe [2014-6-2 1628160]
TM-T88V Utility(Automatic Restore).lnk - c:\program files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe [2014-6-2 224896]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-10-04 16:14 1626112 ----a-w- c:\windows\system32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-11-06 09:50 16855552 -c--a-r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2007-10-09 19:02 1036288 ----a-w- c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\wincmd\\WINCMD32.EXE"=
"c:\\Program Files\\Canon\\DV Messenger\\DV Messenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\Dada\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\WINDOWS\\system32\\hasplms.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\EPSON\\TM-T88V Software\\TM88VUTL\\TM88VUTL.EXE"=
"c:\\Program Files\\EPSON\\EPSON Advanced Printer Driver 5\\PrinterNetworkSetting\\APDNetSetting.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRServer.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRFeature.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\DataProxy.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [30.7.2014 15:30 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [30.7.2014 15:30 192352]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [30.7.2014 15:30 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [30.7.2014 15:30 414520]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [30.7.2014 15:30 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [30.7.2014 15:30 67824]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2.2.2011 15:08 18656]
R2 EPSON_Device_Control_Log_Service;EPSON Device Control Log Service;c:\program files\EPSON\portcommunicationservice\DeviceControlLog.exe [29.11.2012 19:15 333824]
R2 EPSON_PCS_Parallel_Port_Driver;EPSON PCS Parallel Port Driver;c:\windows\system32\drivers\pcslpt.sys [29.11.2012 19:12 19592]
R2 EPSON_Port_Communication_Service;EPSON Port Communication Service;c:\program files\EPSON\portcommunicationservice\PCSVC.exe [29.11.2012 19:16 433152]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files\HWiNFO32\HWiNFO32.SYS [23.2.2009 19:46 16872]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [7.7.2013 22:16 12216]
R2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files\Splashtop\Splashtop Remote\Server\SRService.exe [15.5.2014 14:56 790880]
R2 SSUService;Splashtop Software Updater Service;c:\program files\Splashtop\Splashtop Software Updater\SSUService.exe [9.10.2013 5:47 609056]
R3 ioFakDrv;ioVirtual Device;c:\windows\system32\drivers\ioFakDrv.sys [28.12.2012 21:22 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer;c:\windows\system32\drivers\ioFakMap.sys [28.12.2012 21:22 10624]
R3 ioTablet;Tablet Minidriver for ioTablet;c:\windows\system32\drivers\ioTablet.sys [28.12.2012 21:22 34696]
R3 ioTblMap;Mini Mapper for ioCentre;c:\windows\system32\drivers\ioTblMap.sys [28.12.2012 21:22 10632]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [14.12.2007 9:51 332928]
R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [23.2.2009 20:54 13532]
S3 ACCSKMD;Canon Camera Storage Device;c:\windows\system32\drivers\accskmd.sys [13.5.2003 20:50 32640]
S3 cpuz134;cpuz134;\??\c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys --> c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [?]
S3 imhidusb;Immersion's HID USB Driver;c:\windows\system32\drivers\ImHidUsb.sys [25.2.2008 23:09 30772]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [24.12.2011 21:09 18944]
S3 SystemExplorerHelpService;System Explorer Service;c:\program files\System Explorer\service\SystemExplorerService.exe [8.1.2013 20:35 567256]
S3 TMUSB;EPSON USB Device Driver for TM/BA/EU Printers;c:\windows\system32\drivers\TMUSBXP.sys [2.6.2014 15:05 49408]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [25.8.2012 1:23 11520]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - SJYPKT
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-30 13:48 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-31 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-30 13:29]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
mStart Page = www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-31 23:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1044)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'lsass.exe'(1116)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'explorer.exe'(1704)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2014-07-31 23:08:54
ComboFix-quarantined-files.txt 2014-07-31 21:08
.
Před spuštěním: Volných bajtů: 156 389 560 320
Po spuštění: Volných bajtů: 156 342 530 048
.
- - End Of File - - 90D682234FCB58F86820CCA4D1EAFD48
413FC2A0C716421B3158746D63736515
Re: Prosím o kontrolu logu
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
KillAll::
Registry::
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools Lite"=-
RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
Reboot::Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradkuPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
dada123456
- Návštěvník
- Příspěvky: 29
- Registrován: 30 črc 2014 12:32
Re: Prosím o kontrolu logu
ComboFix 14-07-31.02 - Dada 01.08.2014 10:56:05.9.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1379 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dada\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Dada\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-01 do 2014-08-01 )))))))))))))))))))))))))))))))
.
.
2014-07-31 14:58 . 2014-07-31 14:58 -------- d-----w- c:\program files\Defraggler
2014-07-31 09:22 . 2014-07-31 09:22 -------- d-----w- c:\documents and settings\Dada\Data aplikací\MPC-HC
2014-07-30 23:51 . 2014-07-30 23:53 -------- d-----w- c:\program files\X Codec Pack
2014-07-30 23:36 . 2014-07-30 23:36 -------- d-----w- c:\program files\Kodek CZ
2014-07-30 23:23 . 2014-07-30 23:23 -------- d-----w- c:\program files\Convert MOV to AVI
2014-07-30 13:31 . 2014-07-30 13:31 -------- d-----w- c:\documents and settings\Dada\Data aplikací\AVAST Software
2014-07-30 13:30 . 2014-07-30 13:30 -------- d-----w- c:\windows\jumpshot.com
2014-07-30 13:30 . 2014-07-30 13:29 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-30 13:30 . 2014-07-30 13:29 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-30 13:30 . 2014-07-30 13:29 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-30 13:30 . 2014-07-30 13:30 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-30 13:30 . 2014-07-30 13:29 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-30 13:30 . 2014-07-30 13:29 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-30 13:30 . 2014-07-30 13:29 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-30 13:30 . 2014-07-30 13:29 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-30 13:29 . 2014-07-30 13:29 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-30 13:29 . 2014-07-30 13:29 43152 ----a-w- c:\windows\avastSS.scr
2014-07-30 13:26 . 2014-07-30 13:26 -------- d-----w- c:\program files\AVAST Software
2014-07-30 12:31 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-30 11:29 . 2014-07-31 14:15 -------- d-----w- c:\program files\trend micro
2014-07-29 05:01 . 2014-07-29 05:01 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2014-07-28 23:45 . 2014-07-28 23:45 -------- d-----w- c:\documents and settings\Dada\Local Settings\Data aplikací\backburner
2014-07-24 13:20 . 2014-07-29 00:18 -------- d-----w- c:\documents and settings\Dada\.hydrogen
2014-07-24 13:19 . 2014-07-24 13:35 -------- d-----w- c:\program files\Hydrogen
2014-07-15 08:31 . 2014-07-15 08:31 -------- d-----w- c:\program files\iPod
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\program files\iTunes
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-13 22:06 . 2014-07-13 22:06 368376 ----a-w- c:\windows\system32\cdxareader.ax
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-30 13:44 . 2012-04-01 09:35 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-30 13:44 . 2011-05-17 11:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-27 20:05 . 2009-11-17 22:10 3140 --sha-w- c:\documents and settings\All Users\Data aplikací\KGyGaAvL.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-30 13:29 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ioTablet"="c:\genius\ioTablet\gTabTaskBar.exe" [2011-02-25 49152]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-06-21 15677728]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-21 2586912]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-07-03 43816]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-31 4085896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Dada\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-7-21 35464216]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
ASUS WiFi-AP Solo.lnk - c:\program files\ASUS WiFi-AP Solo\RtWLan.exe /H [2009-2-23 995328]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
Select a coupon.lnk - c:\program files\EPSON\TMCommandEmulator\PopupWindow.exe [2014-6-2 1628160]
TM-T88V Utility(Automatic Restore).lnk - c:\program files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe [2014-6-2 224896]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-10-04 16:14 1626112 ----a-w- c:\windows\system32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-11-06 09:50 16855552 -c--a-r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2007-10-09 19:02 1036288 ----a-w- c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\wincmd\\WINCMD32.EXE"=
"c:\\Program Files\\Canon\\DV Messenger\\DV Messenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\Dada\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\WINDOWS\\system32\\hasplms.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\EPSON\\TM-T88V Software\\TM88VUTL\\TM88VUTL.EXE"=
"c:\\Program Files\\EPSON\\EPSON Advanced Printer Driver 5\\PrinterNetworkSetting\\APDNetSetting.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRServer.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRFeature.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\DataProxy.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [30.7.2014 15:30 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [30.7.2014 15:30 192352]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [30.7.2014 15:30 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [30.7.2014 15:30 414520]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [30.7.2014 15:30 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [30.7.2014 15:30 67824]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2.2.2011 15:08 18656]
R2 EPSON_Device_Control_Log_Service;EPSON Device Control Log Service;c:\program files\EPSON\portcommunicationservice\DeviceControlLog.exe [29.11.2012 19:15 333824]
R2 EPSON_PCS_Parallel_Port_Driver;EPSON PCS Parallel Port Driver;c:\windows\system32\drivers\pcslpt.sys [29.11.2012 19:12 19592]
R2 EPSON_Port_Communication_Service;EPSON Port Communication Service;c:\program files\EPSON\portcommunicationservice\PCSVC.exe [29.11.2012 19:16 433152]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files\HWiNFO32\HWiNFO32.SYS [23.2.2009 19:46 16872]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [7.7.2013 22:16 12216]
R2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files\Splashtop\Splashtop Remote\Server\SRService.exe [15.5.2014 14:56 790880]
R2 SSUService;Splashtop Software Updater Service;c:\program files\Splashtop\Splashtop Software Updater\SSUService.exe [9.10.2013 5:47 609056]
R3 ioFakDrv;ioVirtual Device;c:\windows\system32\drivers\ioFakDrv.sys [28.12.2012 21:22 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer;c:\windows\system32\drivers\ioFakMap.sys [28.12.2012 21:22 10624]
R3 ioTablet;Tablet Minidriver for ioTablet;c:\windows\system32\drivers\ioTablet.sys [28.12.2012 21:22 34696]
R3 ioTblMap;Mini Mapper for ioCentre;c:\windows\system32\drivers\ioTblMap.sys [28.12.2012 21:22 10632]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [14.12.2007 9:51 332928]
R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [23.2.2009 20:54 13532]
S3 ACCSKMD;Canon Camera Storage Device;c:\windows\system32\drivers\accskmd.sys [13.5.2003 20:50 32640]
S3 cpuz134;cpuz134;\??\c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys --> c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [?]
S3 imhidusb;Immersion's HID USB Driver;c:\windows\system32\drivers\ImHidUsb.sys [25.2.2008 23:09 30772]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [24.12.2011 21:09 18944]
S3 SystemExplorerHelpService;System Explorer Service;c:\program files\System Explorer\service\SystemExplorerService.exe [8.1.2013 20:35 567256]
S3 TMUSB;EPSON USB Device Driver for TM/BA/EU Printers;c:\windows\system32\drivers\TMUSBXP.sys [2.6.2014 15:05 49408]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [25.8.2012 1:23 11520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-30 13:48 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-01 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-30 13:29]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
mStart Page = www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-08-01 20:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1048)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\genius\ioTablet\gTabletTaskDll.dll
.
- - - - - - - > 'lsass.exe'(1108)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'explorer.exe'(3748)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
c:\windows\system32\msi.dll
c:\genius\ioTablet\gTabletTaskDll.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
c:\windows\system32\hasplms.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\genius\ioTablet\TabletService.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\Splashtop\Splashtop Remote\Server\SRServer.exe
c:\program files\Splashtop\Splashtop Remote\Server\SRFeature.exe
c:\genius\ioTablet\gIoTabletFunMgm.exe
c:\genius\ioTablet\gTabletTask.exe
c:\program files\ASUS WiFi-AP Solo\RtWLan.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\windows\system32\wbem\unsecapp.exe
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
c:\windows\system32\SearchProtocolHost.exe
c:\windows\system32\SearchFilterHost.exe
.
**************************************************************************
.
Celkový čas: 2014-08-01 21:00:11 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-01 19:00
ComboFix2.txt 2014-07-31 21:08
.
Před spuštěním: Volných bajtů: 156 318 040 064
Po spuštění: Volných bajtů: 156 164 399 104
.
- - End Of File - - F770AEFAB566444E29691B140A214ADB
413FC2A0C716421B3158746D63736515
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1379 [GMT 2:00]
Spuštěný z: c:\documents and settings\Dada\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Dada\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-01 do 2014-08-01 )))))))))))))))))))))))))))))))
.
.
2014-07-31 14:58 . 2014-07-31 14:58 -------- d-----w- c:\program files\Defraggler
2014-07-31 09:22 . 2014-07-31 09:22 -------- d-----w- c:\documents and settings\Dada\Data aplikací\MPC-HC
2014-07-30 23:51 . 2014-07-30 23:53 -------- d-----w- c:\program files\X Codec Pack
2014-07-30 23:36 . 2014-07-30 23:36 -------- d-----w- c:\program files\Kodek CZ
2014-07-30 23:23 . 2014-07-30 23:23 -------- d-----w- c:\program files\Convert MOV to AVI
2014-07-30 13:31 . 2014-07-30 13:31 -------- d-----w- c:\documents and settings\Dada\Data aplikací\AVAST Software
2014-07-30 13:30 . 2014-07-30 13:30 -------- d-----w- c:\windows\jumpshot.com
2014-07-30 13:30 . 2014-07-30 13:29 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-30 13:30 . 2014-07-30 13:29 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-30 13:30 . 2014-07-30 13:29 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-30 13:30 . 2014-07-30 13:30 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-30 13:30 . 2014-07-30 13:29 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-30 13:30 . 2014-07-30 13:29 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-30 13:30 . 2014-07-30 13:29 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-30 13:30 . 2014-07-30 13:29 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-30 13:29 . 2014-07-30 13:29 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-30 13:29 . 2014-07-30 13:29 43152 ----a-w- c:\windows\avastSS.scr
2014-07-30 13:26 . 2014-07-30 13:26 -------- d-----w- c:\program files\AVAST Software
2014-07-30 12:31 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-30 11:29 . 2014-07-31 14:15 -------- d-----w- c:\program files\trend micro
2014-07-29 05:01 . 2014-07-29 05:01 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2014-07-28 23:45 . 2014-07-28 23:45 -------- d-----w- c:\documents and settings\Dada\Local Settings\Data aplikací\backburner
2014-07-24 13:20 . 2014-07-29 00:18 -------- d-----w- c:\documents and settings\Dada\.hydrogen
2014-07-24 13:19 . 2014-07-24 13:35 -------- d-----w- c:\program files\Hydrogen
2014-07-15 08:31 . 2014-07-15 08:31 -------- d-----w- c:\program files\iPod
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\program files\iTunes
2014-07-15 08:31 . 2014-07-15 08:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-13 22:06 . 2014-07-13 22:06 368376 ----a-w- c:\windows\system32\cdxareader.ax
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-30 13:44 . 2012-04-01 09:35 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-30 13:44 . 2011-05-17 11:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-27 20:05 . 2009-11-17 22:10 3140 --sha-w- c:\documents and settings\All Users\Data aplikací\KGyGaAvL.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04 131480 ----a-w- c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-30 13:29 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ioTablet"="c:\genius\ioTablet\gTabTaskBar.exe" [2011-02-25 49152]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-06-21 15677728]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-21 2586912]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-07-03 43816]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-31 4085896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Dada\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-7-21 35464216]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
ASUS WiFi-AP Solo.lnk - c:\program files\ASUS WiFi-AP Solo\RtWLan.exe /H [2009-2-23 995328]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
Select a coupon.lnk - c:\program files\EPSON\TMCommandEmulator\PopupWindow.exe [2014-6-2 1628160]
TM-T88V Utility(Automatic Restore).lnk - c:\program files\EPSON\TM-T88V Software\TM88VUTL\TMRESTOREAPP.exe [2014-6-2 224896]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2007-10-04 16:14 1626112 ----a-w- c:\windows\system32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-11-06 09:50 16855552 -c--a-r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2007-10-09 19:02 1036288 ----a-w- c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\wincmd\\WINCMD32.EXE"=
"c:\\Program Files\\Canon\\DV Messenger\\DV Messenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\Dada\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\WINDOWS\\system32\\hasplms.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\EPSON\\TM-T88V Software\\TM88VUTL\\TM88VUTL.EXE"=
"c:\\Program Files\\EPSON\\EPSON Advanced Printer Driver 5\\PrinterNetworkSetting\\APDNetSetting.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRServer.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\SRFeature.exe"=
"c:\\Program Files\\Splashtop\\Splashtop Remote\\Server\\DataProxy.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [30.7.2014 15:30 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [30.7.2014 15:30 192352]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [30.7.2014 15:30 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [30.7.2014 15:30 414520]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [30.7.2014 15:30 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [30.7.2014 15:30 67824]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2.2.2011 15:08 18656]
R2 EPSON_Device_Control_Log_Service;EPSON Device Control Log Service;c:\program files\EPSON\portcommunicationservice\DeviceControlLog.exe [29.11.2012 19:15 333824]
R2 EPSON_PCS_Parallel_Port_Driver;EPSON PCS Parallel Port Driver;c:\windows\system32\drivers\pcslpt.sys [29.11.2012 19:12 19592]
R2 EPSON_Port_Communication_Service;EPSON Port Communication Service;c:\program files\EPSON\portcommunicationservice\PCSVC.exe [29.11.2012 19:16 433152]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files\HWiNFO32\HWiNFO32.SYS [23.2.2009 19:46 16872]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [7.7.2013 22:16 12216]
R2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files\Splashtop\Splashtop Remote\Server\SRService.exe [15.5.2014 14:56 790880]
R2 SSUService;Splashtop Software Updater Service;c:\program files\Splashtop\Splashtop Software Updater\SSUService.exe [9.10.2013 5:47 609056]
R3 ioFakDrv;ioVirtual Device;c:\windows\system32\drivers\ioFakDrv.sys [28.12.2012 21:22 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer;c:\windows\system32\drivers\ioFakMap.sys [28.12.2012 21:22 10624]
R3 ioTablet;Tablet Minidriver for ioTablet;c:\windows\system32\drivers\ioTablet.sys [28.12.2012 21:22 34696]
R3 ioTblMap;Mini Mapper for ioCentre;c:\windows\system32\drivers\ioTblMap.sys [28.12.2012 21:22 10632]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [14.12.2007 9:51 332928]
R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [23.2.2009 20:54 13532]
S3 ACCSKMD;Canon Camera Storage Device;c:\windows\system32\drivers\accskmd.sys [13.5.2003 20:50 32640]
S3 cpuz134;cpuz134;\??\c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys --> c:\docume~1\Dada\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [?]
S3 imhidusb;Immersion's HID USB Driver;c:\windows\system32\drivers\ImHidUsb.sys [25.2.2008 23:09 30772]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [24.12.2011 21:09 18944]
S3 SystemExplorerHelpService;System Explorer Service;c:\program files\System Explorer\service\SystemExplorerService.exe [8.1.2013 20:35 567256]
S3 TMUSB;EPSON USB Device Driver for TM/BA/EU Printers;c:\windows\system32\drivers\TMUSBXP.sys [2.6.2014 15:05 49408]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [25.8.2012 1:23 11520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-30 13:48 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-01 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-30 13:29]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
mStart Page = www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-08-01 20:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1048)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\genius\ioTablet\gTabletTaskDll.dll
.
- - - - - - - > 'lsass.exe'(1108)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
.
- - - - - - - > 'explorer.exe'(3748)
c:\windows\system32\vorbis.dll
c:\windows\system32\ogg.dll
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\DropboxExt.24.dll
c:\windows\system32\msi.dll
c:\genius\ioTablet\gTabletTaskDll.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
c:\windows\system32\hasplms.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\genius\ioTablet\TabletService.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\Splashtop\Splashtop Remote\Server\SRServer.exe
c:\program files\Splashtop\Splashtop Remote\Server\SRFeature.exe
c:\genius\ioTablet\gIoTabletFunMgm.exe
c:\genius\ioTablet\gTabletTask.exe
c:\program files\ASUS WiFi-AP Solo\RtWLan.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\windows\system32\wbem\unsecapp.exe
c:\documents and settings\Dada\Data aplikací\Dropbox\bin\Dropbox.exe
c:\windows\system32\SearchProtocolHost.exe
c:\windows\system32\SearchFilterHost.exe
.
**************************************************************************
.
Celkový čas: 2014-08-01 21:00:11 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-01 19:00
ComboFix2.txt 2014-07-31 21:08
.
Před spuštěním: Volných bajtů: 156 318 040 064
Po spuštění: Volných bajtů: 156 164 399 104
.
- - End Of File - - F770AEFAB566444E29691B140A214ADB
413FC2A0C716421B3158746D63736515
Přispějete na provoz fóra?