Takze v nudzovom rezime scan prebehol a tu je vysledok:
OTL.txt
OTL logfile created on: 5/15/2011 9:44:13 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\LMK\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
8.00 Gb Paging File | 7.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.88 Gb Total Space | 193.62 Gb Free Space | 83.14% Space Free | Partition Type: NTFS
Drive D: | 218.23 Gb Total Space | 124.25 Gb Free Space | 56.94% Space Free | Partition Type: NTFS
Computer Name: LMK-PC | User Name: LMK | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/05/15 08:30:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\LMK\Desktop\OTL.exe
========== Modules (SafeList) ==========
MOD - [2011/05/15 08:30:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\LMK\Desktop\OTL.exe
MOD - [2010/08/21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010/01/21 16:24:56 | 000,130,048 | ---- | M] (WDC) [Auto | Stopped] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV:64bit: - [2009/11/16 10:12:56 | 000,023,296 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2009/11/16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/08/08 09:08:40 | 000,094,208 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2010/11/22 23:52:46 | 000,718,072 | ---- | M] (Tunngle.net GmbH) [Disabled | Stopped] -- D:\Games\Counter Strike\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2010/10/16 12:46:40 | 000,369,256 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/01 19:07:00 | 003,461,068 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWow64\GameMon.des -- (npggsvc)
SRV - [2009/07/24 02:13:38 | 000,306,232 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Stopped] -- C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe -- (FastBootAgent)
SRV - [2009/06/16 08:58:08 | 000,020,480 | ---- | M] (Memeo) [Auto | Stopped] -- C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe -- (WDSmartWareBackgroundService)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/30 13:23:26 | 000,090,112 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
SRV - [2008/08/14 05:59:52 | 000,100,920 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2008/03/31 11:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011/03/11 08:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 08:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 23:38:46 | 000,508,472 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/04/28 08:57:50 | 000,061,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009/12/18 16:02:26 | 000,123,200 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2009/11/16 10:03:42 | 000,136,584 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2009/11/16 09:56:16 | 000,145,336 | ---- | M] (ESET) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\eamon.sys -- (eamon)
DRV:64bit: - [2009/10/05 17:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/16 08:02:42 | 000,031,232 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle)
DRV:64bit: - [2009/07/20 11:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 05:11:41 | 000,140,800 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2009/06/27 17:30:24 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gHidPnp.sys -- (gHidPnp)
DRV:64bit: - [2009/06/25 17:05:40 | 000,011,776 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gMouUsb16.sys -- (gMouUsb16)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/05 12:15:55 | 001,806,400 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/05/22 16:52:29 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/05/13 03:07:19 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV:64bit: - [2009/02/13 12:02:52 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2008/10/21 11:22:44 | 000,145,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017unic.sys -- (s0017unic) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM)
DRV:64bit: - [2008/10/21 11:22:44 | 000,128,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017obex.sys -- (s0017obex)
DRV:64bit: - [2008/10/21 11:22:44 | 000,034,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017nd5.sys -- (s0017nd5) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS)
DRV:64bit: - [2008/10/21 11:22:42 | 000,152,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017mdm.sys -- (s0017mdm)
DRV:64bit: - [2008/10/21 11:22:42 | 000,133,160 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017mgmt.sys -- (s0017mgmt) Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM)
DRV:64bit: - [2008/10/21 11:22:42 | 000,019,496 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017mdfl.sys -- (s0017mdfl)
DRV:64bit: - [2008/10/21 11:22:40 | 000,113,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s0017bus.sys -- (s0017bus) Sony Ericsson Device 0017 driver (WDM)
DRV:64bit: - [2008/01/09 12:28:20 | 000,034,032 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\seehcri.sys -- (seehcri)
DRV:64bit: - [2007/07/24 20:11:32 | 000,014,904 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Program Files\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
DRV - [2005/01/04 20:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.extel.sk/
IE - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\..\URLSearchHook: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {038dc421-b19e-4711-a218-1fd10de9163b}:1.0.0.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: linkgopher@oooninja.com:1.3.2
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: support@easy-hideip.com:1.0
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/05/10 18:56:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/05/11 12:45:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010/01/23 20:13:30 | 000,000,000 | ---D | M]
[2009/12/25 00:27:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LMK\AppData\Roaming\mozilla\Extensions
[2011/05/10 18:55:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions
[2011/01/24 18:04:14 | 000,000,000 | ---D | M] (Add N Edit Cookies) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions\{038dc421-b19e-4711-a218-1fd10de9163b}
[2011/03/12 00:51:54 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2011/02/13 23:48:08 | 000,000,000 | ---D | M] (Link Gopher) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions\linkgopher@oooninja.com
[2011/04/21 15:28:22 | 000,000,000 | ---D | M] (Hide IP Easy) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions\support@easy-hideip.com
[2010/11/03 21:53:31 | 000,000,000 | ---D | M] (vShare) -- C:\Users\LMK\AppData\Roaming\mozilla\Firefox\Profiles\zy6ny6x4.default\extensions\vshare@toolbar
[2011/05/10 09:32:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/05/07 19:54:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/11/12 17:43:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/02/06 13:04:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/19 13:37:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
[2011/05/10 18:56:27 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2009/07/17 10:40:12 | 000,704,512 | ---- | M] (BitComet) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/05/10 18:56:29 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\atlas-sk.xml
[2011/05/10 18:56:29 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\azet-sk.xml
[2011/05/10 18:56:29 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2011/05/10 18:56:29 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2011/05/10 18:56:29 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2011/05/10 18:56:29 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2011/05/10 15:11:04 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - No CLSID value found.
O2 - BHO: (ooVoo Chat Toolbar) - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ooVoo Chat Toolbar) - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\..\Toolbar\WebBrowser: (ooVoo Chat Toolbar) - {E5A1E26F-0D1D-4307-868F-FBD9A374AB54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: 使用快车3下载 - C:\Users\LMK\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8:64bit: - Extra context menu item: 使用快车3下载全部链接 - C:\Users\LMK\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: 使用快车3下载 - C:\Users\LMK\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\LMK\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - Reg Error: Key error. File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.30.2 192.168.30.3
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ac3filter - C:\Windows\SysWow64\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\SysWow64\ff_acm.acm ()
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
CREATERESTOREPOINT
Error creating restore point.
========== Files/Folders - Created Within 30 Days ==========
[2011/05/15 08:30:10 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\LMK\Desktop\OTL.exe
[2011/05/12 08:05:38 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011/05/12 08:05:37 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2011/05/11 12:44:57 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/05/11 12:40:03 | 000,000,000 | ---D | C] -- C:\Users\LMK\AppData\Local\Western_Digital
[2011/05/11 12:39:16 | 000,000,000 | ---D | C] -- C:\Program Files\Western Digital
[2011/05/11 12:39:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Western Digital
[2011/05/11 12:39:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
[2011/05/11 09:15:33 | 005,509,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011/05/11 09:15:30 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011/05/11 09:15:29 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011/05/11 09:10:25 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/05/10 22:27:50 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/05/10 22:19:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/05/10 22:19:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/05/10 22:19:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/05/10 22:19:39 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/05/10 22:19:31 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/05/10 22:19:16 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011/05/10 22:19:11 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2011/05/10 16:52:26 | 000,000,000 | ---D | C] -- C:\rsit
[2011/05/10 15:31:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ioCentre
[2011/05/10 15:30:27 | 000,000,000 | ---D | C] -- C:\Genius
[2011/05/10 15:28:31 | 000,000,000 | ---D | C] -- C:\Users\LMK\AppData\Roaming\InstallShield
[2011/04/28 07:48:11 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2011/04/28 07:48:11 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011/04/28 07:48:11 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/04/28 07:48:11 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll
[2011/04/28 07:48:11 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/04/28 07:48:11 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2011/04/28 07:48:11 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/04/28 07:48:11 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/04/28 07:48:10 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2011/04/28 07:48:10 | 002,303,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011/04/28 07:48:10 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/04/28 07:48:10 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011/04/28 07:48:10 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/04/28 07:48:10 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2011/04/28 07:48:10 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/04/28 07:48:10 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll
[2011/04/28 07:48:10 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2011/04/28 07:48:10 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/04/28 07:48:10 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/04/28 07:48:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2011/04/28 07:48:10 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll
[2011/04/28 07:48:10 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2011/04/28 07:48:10 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2011/04/28 07:48:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/04/28 07:48:10 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2011/04/28 07:48:10 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2011/04/28 07:48:10 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2011/04/28 07:48:10 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2011/04/28 07:48:10 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2011/04/28 07:48:10 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2011/04/28 07:48:10 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2011/04/28 07:48:10 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/04/28 07:48:10 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/04/28 07:48:10 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2011/04/28 07:48:10 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2011/04/28 07:48:10 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/04/28 07:48:10 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2011/04/28 07:48:10 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2011/04/28 07:48:10 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2011/04/28 07:48:10 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2011/04/28 07:48:10 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/04/28 07:48:10 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/04/28 07:48:10 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/04/28 07:48:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2011/04/28 07:48:10 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2011/04/28 07:48:10 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/04/28 07:48:10 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/04/28 07:48:10 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2011/04/28 07:48:10 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2011/04/28 07:48:10 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2011/04/28 07:48:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2011/04/28 07:48:10 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2011/04/28 07:48:10 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2011/04/28 07:48:10 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2011/04/28 07:48:10 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/04/28 07:48:10 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2011/04/28 07:48:10 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/04/28 07:48:10 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2011/04/28 07:48:10 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/04/28 07:48:09 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2011/04/28 07:48:09 | 001,492,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/04/28 07:48:09 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/04/28 07:48:09 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011/04/28 07:48:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2011/04/28 07:48:09 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2011/04/28 07:48:09 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/04/28 07:48:09 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2011/04/28 07:48:09 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/04/28 07:48:09 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2011/04/28 07:48:09 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2011/04/28 07:48:09 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/04/28 07:48:09 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/04/28 07:48:09 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2011/04/28 07:48:09 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2011/04/28 07:48:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2011/04/28 07:48:09 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2011/04/28 07:48:09 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2011/04/28 07:48:09 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/04/27 08:27:12 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/04/27 08:27:11 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011/04/27 08:27:06 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011/04/27 08:27:04 | 000,662,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011/04/27 08:26:48 | 002,566,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2011/04/27 08:26:48 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2011/04/27 08:26:47 | 001,686,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2011/04/27 08:26:47 | 000,187,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2011/04/27 08:26:47 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2011/04/27 08:26:47 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2011/04/27 08:26:47 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2011/04/27 08:26:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011/04/27 08:26:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011/04/21 12:41:25 | 000,000,000 | ---D | C] -- C:\Users\LMK\AppData\Roaming\HideIPEasy
[2011/04/21 12:41:25 | 000,000,000 | ---D | C] -- C:\ProgramData\HideIPEasy
[2011/04/21 10:40:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live Safety Center
[2011/04/21 10:38:46 | 000,000,000 | ---D | C] -- C:\Users\LMK\Documents\Prijaté súbory
[2011/04/20 13:00:07 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011/04/20 12:13:13 | 000,061,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fssfltr.sys
[2011/04/20 12:03:52 | 000,000,000 | ---D | C] -- C:\Users\LMK\Tracing
[2011/04/20 08:50:59 | 000,000,000 | ---D | C] -- C:\Users\LMK\AppData\Roaming\DMCache
[2011/04/15 16:20:38 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2011/04/15 16:20:38 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2011/04/15 12:49:58 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2011/04/15 12:49:58 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2011/04/15 12:49:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2011/04/15 12:49:39 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2011/04/15 12:49:39 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2011/04/15 12:49:39 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2011/04/15 12:49:39 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2011/04/15 12:49:38 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2011/04/15 12:49:38 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2011/04/15 12:49:37 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2011/04/15 12:49:37 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2011/04/15 12:49:31 | 000,603,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2011/04/15 12:49:31 | 000,518,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2011/04/15 12:49:29 | 000,640,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2011/04/15 12:49:29 | 000,556,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2011/04/15 12:49:29 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2011/04/15 12:49:29 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2011/04/15 12:49:29 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2011/04/15 12:46:41 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2010/02/04 01:00:00 | 000,139,264 | ---- | C] ( ) -- C:\Windows\sipr3260.dll
[1 C:\Users\LMK\Desktop\*.tmp files -> C:\Users\LMK\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/05/15 09:42:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/15 09:42:06 | 3220,647,936 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/15 09:32:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2422293349-1813714993-3853358830-1000UA.job
[2011/05/15 08:30:41 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 08:30:41 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 08:30:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\LMK\Desktop\OTL.exe
[2011/05/14 17:02:29 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2422293349-1813714993-3853358830-1000Core.job
[2011/05/12 21:19:25 | 000,302,080 | ---- | M] () -- C:\Users\LMK\Desktop\vkc2941w.exe
[2011/05/12 19:10:48 | 000,007,600 | ---- | M] () -- C:\Users\LMK\AppData\Local\Resmon.ResmonCfg
[2011/05/12 18:39:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2011/05/12 18:32:57 | 000,002,355 | ---- | M] () -- C:\Users\LMK\Desktop\Google Chrome.lnk
[2011/05/11 12:39:29 | 000,001,320 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk
[2011/05/11 12:21:53 | 000,003,352 | ---- | M] () -- C:\bootsqm.dat
[2011/05/10 22:18:46 | 004,345,263 | R--- | M] () -- C:\Users\LMK\Desktop\ComboFix.exe
[2011/05/10 15:11:04 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2011/05/07 11:47:39 | 000,002,725 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office Word 2007.lnk
[2011/04/28 08:18:14 | 000,778,278 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/04/28 08:18:14 | 000,651,882 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/04/28 08:18:14 | 000,120,814 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/04/28 07:48:11 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2011/04/28 07:48:11 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011/04/28 07:48:11 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/04/28 07:48:11 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll
[2011/04/28 07:48:11 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/04/28 07:48:11 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2011/04/28 07:48:11 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/04/28 07:48:11 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/04/28 07:48:10 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2011/04/28 07:48:10 | 002,303,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011/04/28 07:48:10 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/04/28 07:48:10 | 000,818,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011/04/28 07:48:10 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/04/28 07:48:10 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2011/04/28 07:48:10 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/04/28 07:48:10 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll
[2011/04/28 07:48:10 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2011/04/28 07:48:10 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/04/28 07:48:10 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/04/28 07:48:10 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2011/04/28 07:48:10 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll
[2011/04/28 07:48:10 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2011/04/28 07:48:10 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2011/04/28 07:48:10 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/04/28 07:48:10 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2011/04/28 07:48:10 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2011/04/28 07:48:10 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2011/04/28 07:48:10 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2011/04/28 07:48:10 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2011/04/28 07:48:10 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2011/04/28 07:48:10 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2011/04/28 07:48:10 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/04/28 07:48:10 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/04/28 07:48:10 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2011/04/28 07:48:10 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2011/04/28 07:48:10 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/04/28 07:48:10 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2011/04/28 07:48:10 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2011/04/28 07:48:10 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2011/04/28 07:48:10 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2011/04/28 07:48:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/04/28 07:48:10 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/04/28 07:48:10 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/04/28 07:48:10 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2011/04/28 07:48:10 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2011/04/28 07:48:10 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/04/28 07:48:10 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/04/28 07:48:10 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/04/28 07:48:10 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2011/04/28 07:48:10 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2011/04/28 07:48:10 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2011/04/28 07:48:10 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2011/04/28 07:48:10 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2011/04/28 07:48:10 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2011/04/28 07:48:10 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2011/04/28 07:48:10 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/04/28 07:48:10 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2011/04/28 07:48:10 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/04/28 07:48:10 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2011/04/28 07:48:10 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/04/28 07:48:09 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2011/04/28 07:48:09 | 001,492,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/04/28 07:48:09 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/04/28 07:48:09 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011/04/28 07:48:09 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2011/04/28 07:48:09 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2011/04/28 07:48:09 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/04/28 07:48:09 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2011/04/28 07:48:09 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/04/28 07:48:09 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2011/04/28 07:48:09 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2011/04/28 07:48:09 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/04/28 07:48:09 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/04/28 07:48:09 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2011/04/28 07:48:09 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2011/04/28 07:48:09 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2011/04/28 07:48:09 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2011/04/28 07:48:09 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011/04/28 07:48:09 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2011/04/28 07:48:09 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/04/15 13:01:30 | 000,419,152 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[1 C:\Users\LMK\Desktop\*.tmp files -> C:\Users\LMK\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/05/12 21:19:25 | 000,302,080 | ---- | C] () -- C:\Users\LMK\Desktop\vkc2941w.exe
[2011/05/11 12:39:29 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk
[2011/05/11 12:21:53 | 000,003,352 | ---- | C] () -- C:\bootsqm.dat
[2011/05/10 22:19:44 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/05/10 22:19:44 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/05/10 22:19:44 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011/05/10 22:19:44 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/05/10 22:19:44 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/05/10 22:18:30 | 004,345,263 | R--- | C] () -- C:\Users\LMK\Desktop\ComboFix.exe
[2011/05/10 18:56:35 | 000,001,156 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/10 15:31:35 | 000,025,088 | ---- | C] () -- C:\Windows\SysNative\drivers\gHidPnp.sys
[2011/05/10 15:31:35 | 000,011,776 | ---- | C] () -- C:\Windows\SysNative\drivers\gMouUsb16.sys
[2011/05/06 17:38:47 | 000,007,600 | ---- | C] () -- C:\Users\LMK\AppData\Local\Resmon.ResmonCfg
[2011/04/28 07:48:10 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/04/28 07:48:09 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/04/22 19:54:06 | 000,000,515 | ---- | C] () -- C:\Users\LMK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Test NT.lnk
[2011/03/31 18:52:30 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/03/19 19:11:44 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2011/02/21 09:32:24 | 000,000,644 | ---- | C] () -- C:\Windows\SysWow64\secustat.dat
[2011/02/21 09:31:48 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2011/01/21 14:41:00 | 209,591,808 | ---- | C] () -- C:\Windows\Total Commander 7.56a ExtremePack 2010.13 Rus.exe
[2011/01/21 12:26:04 | 000,002,455 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2011/01/12 18:10:52 | 000,757,526 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/12/03 17:43:57 | 000,056,410 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2010/09/02 01:53:48 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/06/23 13:35:52 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/06/23 13:35:52 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/03/15 06:31:48 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/01/12 20:53:29 | 000,000,475 | ---- | C] () -- C:\Windows\SIERRA.INI
[2009/12/26 01:05:41 | 000,000,990 | -HS- | C] () -- C:\Users\LMK\AppData\Roaming\systemfl.$dk
[2009/12/16 19:40:12 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2009/08/19 10:33:09 | 000,018,432 | ---- | C] () -- C:\Windows\OOBEPlayer.exe
[2009/08/19 10:33:09 | 000,000,031 | ---- | C] () -- C:\Windows\OOBEPlayer.ini
[2009/07/29 07:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2007/02/05 21:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
========== LOP Check ==========
[2011/02/21 10:33:09 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\BITS
[2011/01/21 12:38:18 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\BSplayer PRO
[2010/12/03 17:25:21 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DAEMON Tools Lite
[2010/11/20 23:42:34 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DAEMON Tools Pro
[2011/05/12 13:29:14 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DMCache
[2011/02/21 09:31:38 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\FlashGet
[2011/02/21 09:31:36 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\FlashGetBHO
[2011/01/05 10:20:39 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\GetRightToGo
[2011/02/21 18:08:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\GHISLER
[2011/04/21 12:41:25 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\HideIPEasy
[2009/12/19 07:24:43 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\ImgBurn
[2010/09/12 13:09:45 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\IrfanView
[2011/01/21 12:30:35 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\LangSoft
[2010/01/10 18:28:44 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Leadertech
[2010/01/19 19:54:44 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\ooVoo Details
[2011/02/06 17:25:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\PlayFirst
[2010/02/14 21:43:55 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Synthesia
[2010/12/26 21:24:43 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\TeamViewer
[2011/01/19 23:04:32 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Thinstall
[2011/03/26 01:22:11 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Tunngle
[2009/12/27 00:54:33 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\uTorrent
[2010/11/18 23:27:53 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\VitySoft
[2011/05/11 12:39:34 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Western Digital
[2010/11/11 16:27:17 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Win7codecs
[2011/05/03 14:45:36 | 000,032,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2009/12/29 20:12:51 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Adobe
[2011/02/21 10:33:09 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\BITS
[2011/01/21 12:38:18 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\BSplayer PRO
[2010/01/10 18:03:45 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\CyberLink
[2010/12/03 17:25:21 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DAEMON Tools Lite
[2010/11/20 23:42:34 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DAEMON Tools Pro
[2011/05/12 13:29:14 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\DMCache
[2011/02/21 09:31:38 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\FlashGet
[2011/02/21 09:31:36 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\FlashGetBHO
[2011/01/05 10:20:39 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\GetRightToGo
[2011/02/21 18:08:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\GHISLER
[2011/04/21 12:41:25 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\HideIPEasy
[2009/12/16 19:35:15 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Identities
[2009/12/19 07:24:43 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\ImgBurn
[2011/05/10 15:28:31 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\InstallShield
[2010/09/12 13:09:45 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\IrfanView
[2011/01/21 12:30:35 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\LangSoft
[2010/01/10 18:28:44 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Leadertech
[2009/12/16 19:28:47 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Macromedia
[2011/04/04 23:54:05 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Malwarebytes
[2009/07/14 09:44:38 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Media Center Programs
[2011/04/20 12:03:51 | 000,000,000 | --SD | M] -- C:\Users\LMK\AppData\Roaming\Microsoft
[2009/12/25 00:27:10 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Mozilla
[2010/01/19 19:54:44 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\ooVoo Details
[2011/02/06 17:25:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\PlayFirst
[2011/05/13 16:03:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Skype
[2011/05/13 16:03:28 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\skypePM
[2011/04/06 18:02:35 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Sun
[2010/02/14 21:43:55 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Synthesia
[2010/12/26 21:24:43 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\TeamViewer
[2011/01/19 23:04:32 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Thinstall
[2011/03/26 01:22:11 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Tunngle
[2009/12/27 00:54:33 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\uTorrent
[2010/11/18 23:27:53 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\VitySoft
[2011/05/11 12:39:34 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Western Digital
[2010/11/11 16:27:17 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\Win7codecs
[2009/12/19 07:18:05 | 000,000,000 | ---D | M] -- C:\Users\LMK\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\ERDNT\cache64\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\ERDNT\cache86\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\ERDNT\cache64\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\ERDNT\cache64\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\ERDNT\cache86\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011/02/26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\ERDNT\cache86\explorer.exe
[2011/02/26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\explorer.exe
[2011/02/26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SysWOW64\explorer.exe
[2011/02/26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2009/08/03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011/02/26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009/08/03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2011/03/11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011/03/11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
[2011/03/11 08:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011/03/11 08:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0033117673c16921\iaStorV.sys
[2011/03/11 08:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_0b141c81a16e25e6\iaStorV.sys
[2011/03/11 08:25:49 | 000,410,496 | ---- | M] (Intel Corporation) MD5=BFDC9D75698800CFE4D1698BF2750EA2 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_0bccc8c8ba6985c1\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\ERDNT\cache64\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
< MD5 for: NDIS.SYS >
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\ERDNT\cache64\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu Logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosim o kontrolu Logu
Dokoncenie OTL
< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\ERDNT\cache64\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\ERDNT\cache86\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2011/03/11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2011/03/11 08:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\SysNative\drivers\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvraid.sys
[2011/03/11 08:25:53 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A5C82EB2F72AA004887F90B84A771F73 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\SysNative\drivers\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
[2011/03/11 08:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
[2011/03/11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011/03/11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache86\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\ERDNT\cache64\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\ERDNT\cache86\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\ERDNT\cache64\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\ERDNT\cache64\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache86\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\ERDNT\cache64\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\ERDNT\cache64\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\ERDNT\cache64\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\ERDNT\cache86\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011/05/12 18:39:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWOW64\Access.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 154 bytes -> C:\ProgramData\Temp:D79367EB
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:5886DCB8
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:81E7CF6A
< End of report >
< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\ERDNT\cache64\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\ERDNT\cache86\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2011/03/11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2011/03/11 08:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\SysNative\drivers\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvraid.sys
[2011/03/11 08:25:53 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A5C82EB2F72AA004887F90B84A771F73 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\SysNative\drivers\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
[2011/03/11 08:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
[2011/03/11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011/03/11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache86\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\ERDNT\cache64\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\ERDNT\cache86\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\ERDNT\cache64\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\ERDNT\cache64\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache86\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\ERDNT\cache64\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\ERDNT\cache64\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\ERDNT\cache64\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\ERDNT\cache86\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011/05/12 18:39:06 | 000,000,000 | ---- | M] () -- C:\Windows\SysWOW64\Access.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 154 bytes -> C:\ProgramData\Temp:D79367EB
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:5886DCB8
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:81E7CF6A
< End of report >
Re: Prosim o kontrolu Logu
EXTRAS.txt
OTL Extras logfile created on: 5/15/2011 9:44:13 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\LMK\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
8.00 Gb Paging File | 7.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.88 Gb Total Space | 193.62 Gb Free Space | 83.14% Space Free | Partition Type: NTFS
Drive D: | 218.23 Gb Total Space | 124.25 Gb Free Space | 56.94% Space Free | Partition Type: NTFS
Computer Name: LMK-PC | User Name: LMK | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\INSTAL2010\FlashGet\FlashGet3.exe" = D:\INSTAL2010\FlashGet\FlashGet3.exe:*:Enabled:Flashget3
"D:\INSTAL2010\FlashGet\FlashGet3.exe" = D:\INSTAL2010\FlashGet\FlashGet3.exe:*:Enabled:Flashget3
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1686C4D1-B1FD-42E8-B7A8-FB4C4DBA5BA8}" = ASUS Power4Gear Hybrid
"{604CB4FC-3D32-405F-A109-165F170529B6}" = WD SmartWare
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 260.99
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C0093745-28AE-4B60-A8D0-69A518B56D06}" = Bezpečnosť rodiny v službe Windows Live
"{D179D728-C39E-4827-826D-588D3B28D7E6}" = ESET NOD32 Antivirus
"{D42F84B6-3709-4A50-8502-6719D16AE6C8}" = SRS Premium Sound Control Panel
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Defraggler" = Defraggler
"Elantech" = ETDWare PS/2-x64 7.0.5.7_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"NVIDIA Drivers" = NVIDIA Drivers
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"WinRAR archiver" = WinRAR archivátor
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{1A64965D-FE4B-46D9-A600-384D964EFC8A}" = Windows Live Fotogaléria
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 24
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{28456131-01CD-4BE4-8D67-BDBDD1ED636A}" = Windows Live Sync
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.009.00
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3794C225-C407-49CD-A1BC-864EE6C1675E}" = Account Hitman
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{67114EC2-5C83-4FE9-A1EF-358459AB3640}" = Windows Live Mail
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78BF8D44-E631-44AC-9EAD-33A28D0E0F1F}" = Revelation Natural Art SK
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Stronghold Crusader Extreme
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISE_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-041B-1000-0000000FF1CE}_ENTERPRISE_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISE_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{97A58F57-5F50-4B0E-92BA-D41AF806E1B3}" = Asistent pri prihlasovaní v sieti Windows Live
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{A16656CE-4B17-4484-A13F-22B9500E5223}" = Fast Boot
"{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}" = ioCentre
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A62FA809-74EB-440B-B8A8-AF8A36807F19}" = Windows Live Messenger
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.4 MUI
"{B6CEE342-E0EE-457F-A720-9F8BDAB555BF}" = Windows Live Toolbar
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C109F629-36BB-4F7B-9762-A038936CA457}" = Windows Live Essentials
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{CFEAF8DD-4BDF-4141-BF2B-02BCA2DEB7FB}" = Windows Live Writer
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}" = ASUS FancyStart
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F343FA04-CFC0-487C-A617-A5E8CF4D7B10}" = Image Grabber II.NET
"{FA2092C5-7979-412D-A962-6485274AE1EE}" = ASUS Data Security Manager
"{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}" = ooVoo
"{FD9C31B6-F572-414D-81E3-89368C97A125}_is1" = CamStudio OSS Desktop Recorder
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AccessDiver v4.402_is1" = AccessDiver v4.402
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus_Camera_ScreenSaver" = Asus_Camera_ScreenSaver
"BSPlayerp" = BS.Player PRO
"CCleaner" = CCleaner
"Counter-Strike 1.6" = Counter-Strike 1.6
"Diablo II" = Diablo II
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Chicken Prox_is1" = Chicken Prox v3
"Image Grabber II" = Image Grabber II
"ImgBurn" = ImgBurn
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox 4.0.1 (x86 sk)" = Mozilla Firefox 4.0.1 (x86 sk)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"ooVoo_Chat Toolbar" = ooVoo_Chat Toolbar
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.0.5
"StAPH_is1" = StAPH ver 1.25 - "Rise Of The Themes"
"Synthesia" = Synthesia (remove only)
"SystemRequirementsLab" = System Requirements Lab
"TheNurrrs Skin Pack for CS 1.6" = TheNurrrs Skin Pack for CS 1.6
"Totalcmd" = Total Commander (Remove or Repair)
"Tunngle beta_is1" = Tunngle beta
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10. 2. 2011 12:47:13 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: FIFA10.exe, verzia: 0.0.0.0, časová značka:
0x4aa71721 Názov chybového modulu: FIFA10.exe, verzia: 0.0.0.0, časová značka: 0x4aa71721
Kód
výnimky: 0xc0000005 Odstup chyby: 0x00396e43 Identifikácia chybného procesu: 0xfdc
Čas
spustenia chybnej aplikácie: 0x01cbc931b578a410 Cesta chybnej aplikácie: D:\Games\Fifa\FIFA10.exe
Cesta
chybného modulu: D:\Games\Fifa\FIFA10.exe Identifikácia hlásenia: 68cec8e0-3535-11e0-8924-90e6ba40482a
Error - 11. 2. 2011 16:28:13 | Computer Name = LMK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 11. 2. 2011 16:28:13 | Computer Name = LMK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 13. 2. 2011 17:20:05 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xcd0 Čas spustenia chybnej aplikácie: 0x01cbcbbeab2fdcb4 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 06384c04-37b7-11e0-a6cd-90e6ba40482a
Error - 14. 2. 2011 11:43:21 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0x7ac Čas spustenia chybnej aplikácie: 0x01cbcc5c5f3714f0 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 262164c0-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 11:44:57 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xc94 Čas spustenia chybnej aplikácie: 0x01cbcc5df3597c80 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 5f608b80-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 11:46:33 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xe98 Čas spustenia chybnej aplikácie: 0x01cbcc5e38384110 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 98a57ea0-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 12:02:12 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0x13ac Čas spustenia chybnej aplikácie: 0x01cbcc60597c6b60 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: c826adf0-3853-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 17:22:06 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: CaptchaKiller.exe, verzia: 2.0.0.0, časová
značka: 0x468bd7aa Názov chybového modulu: mso.dll, verzia: 12.0.6545.5004, časová
značka: 0x4c9344d2 Kód výnimky: 0xc0000005 Odstup chyby: 0x0000dbf8 Identifikácia
chybného procesu: 0xe44 Čas spustenia chybnej aplikácie: 0x01cbcc8c57bbe6f8 Cesta
chybnej aplikácie: C:\CaptchaKiller\CaptchaKiller.exe Cesta chybného modulu: C:\Program
Files (x86)\Common Files\Microsoft Shared\office12\mso.dll Identifikácia hlásenia:
78a08918-3880-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 17:32:05 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: CaptchaKiller.exe, verzia: 2.0.0.0, časová
značka: 0x468bd7aa Názov chybového modulu: mso.dll, verzia: 12.0.6545.5004, časová
značka: 0x4c9344d2 Kód výnimky: 0xc0000005 Odstup chyby: 0x0000dbf8 Identifikácia
chybného procesu: 0x4e0 Čas spustenia chybnej aplikácie: 0x01cbcc8d5d0e1878 Cesta
chybnej aplikácie: C:\CaptchaKiller\CaptchaKiller.exe Cesta chybného modulu: C:\Program
Files (x86)\Common Files\Microsoft Shared\office12\mso.dll Identifikácia hlásenia:
ddf261c8-3881-11e0-adff-90e6ba40482a
[ System Events ]
Error - 15. 5. 2011 3:49:47 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
< End of report >
OTL Extras logfile created on: 5/15/2011 9:44:13 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\LMK\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
8.00 Gb Paging File | 7.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.88 Gb Total Space | 193.62 Gb Free Space | 83.14% Space Free | Partition Type: NTFS
Drive D: | 218.23 Gb Total Space | 124.25 Gb Free Space | 56.94% Space Free | Partition Type: NTFS
Computer Name: LMK-PC | User Name: LMK | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\INSTAL2010\FlashGet\FlashGet3.exe" = D:\INSTAL2010\FlashGet\FlashGet3.exe:*:Enabled:Flashget3
"D:\INSTAL2010\FlashGet\FlashGet3.exe" = D:\INSTAL2010\FlashGet\FlashGet3.exe:*:Enabled:Flashget3
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1686C4D1-B1FD-42E8-B7A8-FB4C4DBA5BA8}" = ASUS Power4Gear Hybrid
"{604CB4FC-3D32-405F-A109-165F170529B6}" = WD SmartWare
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 260.99
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C0093745-28AE-4B60-A8D0-69A518B56D06}" = Bezpečnosť rodiny v službe Windows Live
"{D179D728-C39E-4827-826D-588D3B28D7E6}" = ESET NOD32 Antivirus
"{D42F84B6-3709-4A50-8502-6719D16AE6C8}" = SRS Premium Sound Control Panel
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Defraggler" = Defraggler
"Elantech" = ETDWare PS/2-x64 7.0.5.7_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"NVIDIA Drivers" = NVIDIA Drivers
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"WinRAR archiver" = WinRAR archivátor
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{1A64965D-FE4B-46D9-A600-384D964EFC8A}" = Windows Live Fotogaléria
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 24
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{28456131-01CD-4BE4-8D67-BDBDD1ED636A}" = Windows Live Sync
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.009.00
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3794C225-C407-49CD-A1BC-864EE6C1675E}" = Account Hitman
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{67114EC2-5C83-4FE9-A1EF-358459AB3640}" = Windows Live Mail
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78BF8D44-E631-44AC-9EAD-33A28D0E0F1F}" = Revelation Natural Art SK
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Stronghold Crusader Extreme
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISE_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-041B-1000-0000000FF1CE}_ENTERPRISE_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISE_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{97A58F57-5F50-4B0E-92BA-D41AF806E1B3}" = Asistent pri prihlasovaní v sieti Windows Live
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{A16656CE-4B17-4484-A13F-22B9500E5223}" = Fast Boot
"{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}" = ioCentre
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A62FA809-74EB-440B-B8A8-AF8A36807F19}" = Windows Live Messenger
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.4 MUI
"{B6CEE342-E0EE-457F-A720-9F8BDAB555BF}" = Windows Live Toolbar
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C109F629-36BB-4F7B-9762-A038936CA457}" = Windows Live Essentials
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{CFEAF8DD-4BDF-4141-BF2B-02BCA2DEB7FB}" = Windows Live Writer
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}" = ASUS FancyStart
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F343FA04-CFC0-487C-A617-A5E8CF4D7B10}" = Image Grabber II.NET
"{FA2092C5-7979-412D-A962-6485274AE1EE}" = ASUS Data Security Manager
"{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}" = ooVoo
"{FD9C31B6-F572-414D-81E3-89368C97A125}_is1" = CamStudio OSS Desktop Recorder
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AccessDiver v4.402_is1" = AccessDiver v4.402
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus_Camera_ScreenSaver" = Asus_Camera_ScreenSaver
"BSPlayerp" = BS.Player PRO
"CCleaner" = CCleaner
"Counter-Strike 1.6" = Counter-Strike 1.6
"Diablo II" = Diablo II
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Chicken Prox_is1" = Chicken Prox v3
"Image Grabber II" = Image Grabber II
"ImgBurn" = ImgBurn
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox 4.0.1 (x86 sk)" = Mozilla Firefox 4.0.1 (x86 sk)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"ooVoo_Chat Toolbar" = ooVoo_Chat Toolbar
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.0.5
"StAPH_is1" = StAPH ver 1.25 - "Rise Of The Themes"
"Synthesia" = Synthesia (remove only)
"SystemRequirementsLab" = System Requirements Lab
"TheNurrrs Skin Pack for CS 1.6" = TheNurrrs Skin Pack for CS 1.6
"Totalcmd" = Total Commander (Remove or Repair)
"Tunngle beta_is1" = Tunngle beta
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10. 2. 2011 12:47:13 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: FIFA10.exe, verzia: 0.0.0.0, časová značka:
0x4aa71721 Názov chybového modulu: FIFA10.exe, verzia: 0.0.0.0, časová značka: 0x4aa71721
Kód
výnimky: 0xc0000005 Odstup chyby: 0x00396e43 Identifikácia chybného procesu: 0xfdc
Čas
spustenia chybnej aplikácie: 0x01cbc931b578a410 Cesta chybnej aplikácie: D:\Games\Fifa\FIFA10.exe
Cesta
chybného modulu: D:\Games\Fifa\FIFA10.exe Identifikácia hlásenia: 68cec8e0-3535-11e0-8924-90e6ba40482a
Error - 11. 2. 2011 16:28:13 | Computer Name = LMK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 11. 2. 2011 16:28:13 | Computer Name = LMK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 13. 2. 2011 17:20:05 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xcd0 Čas spustenia chybnej aplikácie: 0x01cbcbbeab2fdcb4 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 06384c04-37b7-11e0-a6cd-90e6ba40482a
Error - 14. 2. 2011 11:43:21 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0x7ac Čas spustenia chybnej aplikácie: 0x01cbcc5c5f3714f0 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 262164c0-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 11:44:57 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xc94 Čas spustenia chybnej aplikácie: 0x01cbcc5df3597c80 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 5f608b80-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 11:46:33 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0xe98 Čas spustenia chybnej aplikácie: 0x01cbcc5e38384110 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: 98a57ea0-3851-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 12:02:12 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Stronghold Crusader.exe, verzia: 1.0.0.1,
časová značka: 0x48288a6b Názov chybového modulu: Stronghold Crusader.exe, verzia:
1.0.0.1, časová značka: 0x48288a6b Kód výnimky: 0xc0000005 Odstup chyby: 0x00004721
Identifikácia
chybného procesu: 0x13ac Čas spustenia chybnej aplikácie: 0x01cbcc60597c6b60 Cesta
chybnej aplikácie: D:\Games\Stronghold\Stronghold Crusader.exe Cesta chybného modulu:
D:\Games\Stronghold\Stronghold Crusader.exe Identifikácia hlásenia: c826adf0-3853-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 17:22:06 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: CaptchaKiller.exe, verzia: 2.0.0.0, časová
značka: 0x468bd7aa Názov chybového modulu: mso.dll, verzia: 12.0.6545.5004, časová
značka: 0x4c9344d2 Kód výnimky: 0xc0000005 Odstup chyby: 0x0000dbf8 Identifikácia
chybného procesu: 0xe44 Čas spustenia chybnej aplikácie: 0x01cbcc8c57bbe6f8 Cesta
chybnej aplikácie: C:\CaptchaKiller\CaptchaKiller.exe Cesta chybného modulu: C:\Program
Files (x86)\Common Files\Microsoft Shared\office12\mso.dll Identifikácia hlásenia:
78a08918-3880-11e0-adff-90e6ba40482a
Error - 14. 2. 2011 17:32:05 | Computer Name = LMK-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: CaptchaKiller.exe, verzia: 2.0.0.0, časová
značka: 0x468bd7aa Názov chybového modulu: mso.dll, verzia: 12.0.6545.5004, časová
značka: 0x4c9344d2 Kód výnimky: 0xc0000005 Odstup chyby: 0x0000dbf8 Identifikácia
chybného procesu: 0x4e0 Čas spustenia chybnej aplikácie: 0x01cbcc8d5d0e1878 Cesta
chybnej aplikácie: C:\CaptchaKiller\CaptchaKiller.exe Cesta chybného modulu: C:\Program
Files (x86)\Common Files\Microsoft Shared\office12\mso.dll Identifikácia hlásenia:
ddf261c8-3881-11e0-adff-90e6ba40482a
[ System Events ]
Error - 15. 5. 2011 3:49:47 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:51:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:56:54 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
Error - 15. 5. 2011 3:59:01 | Computer Name = LMK-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068
< End of report >
Re: Prosim o kontrolu Logu
Tento program znáte?C:\CaptchaKiller\
Spustte OTL-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 154 bytes -> C:\ProgramData\Temp:D79367EB
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:5886DCB8
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:81E7CF6A
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - No CLSID value found.
O2 - BHO: (ooVoo Chat Toolbar) - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ooVoo Chat Toolbar) - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\..\Toolbar\WebBrowser: (ooVoo Chat Toolbar) - {E5A1E26F-0D1D-4307-868F-FBD9A374AB54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2422293349-1813714993-3853358830-1000\..\URLSearchHook: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll (Conduit Ltd.)
:files
C:\Windows\SysWow64\ezsidmv.dat
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]
[Reboot]-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosim o kontrolu Logu
Program CaptchaKIller je v poriadku, poznam ho
LOG
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
ADS C:\ProgramData\Temp:D79367EB deleted successfully.
ADS C:\ProgramData\Temp:5886DCB8 deleted successfully.
ADS C:\ProgramData\Temp:81E7CF6A deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ deleted successfully.
C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{E0E899AB-F487-11D5-8D29-0050BA6940E3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E0E899AB-F487-11D5-8D29-0050BA6940E3}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
========== FILES ==========
C:\Windows\SysWow64\ezsidmv.dat moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAB63.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP26B3.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7F6D.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB155.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPEBF.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI5E1C.tmp moved successfully.
C:\WINDOWS\Installer\MSI7502.tmp moved successfully.
C:\WINDOWS\Installer\MSIBD97.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt12E.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt4672.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\6b986fcefc4ddf45d2c157ae08ee07e4\BITDBB0.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\9e01b17e8c3470e336ce3a5749e34468\BIT5B55.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\e2ae778f2037152039ec560f0abd6f3e\BITDD08.tmp moved successfully.
C:\WINDOWS\temp\HTT1044.tmp moved successfully.
C:\WINDOWS\temp\HTT1059.tmp moved successfully.
C:\WINDOWS\temp\HTT1281.tmp moved successfully.
C:\WINDOWS\temp\HTT1379.tmp moved successfully.
C:\WINDOWS\temp\HTT1549.tmp moved successfully.
C:\WINDOWS\temp\HTT1A43.tmp moved successfully.
C:\WINDOWS\temp\HTT1C87.tmp moved successfully.
C:\WINDOWS\temp\HTT1D69.tmp moved successfully.
C:\WINDOWS\temp\HTT2157.tmp moved successfully.
C:\WINDOWS\temp\HTT2469.tmp moved successfully.
C:\WINDOWS\temp\HTT248A.tmp moved successfully.
C:\WINDOWS\temp\HTT24A7.tmp moved successfully.
C:\WINDOWS\temp\HTT2796.tmp moved successfully.
C:\WINDOWS\temp\HTT29CB.tmp moved successfully.
C:\WINDOWS\temp\HTT2B12.tmp moved successfully.
C:\WINDOWS\temp\HTT2B4F.tmp moved successfully.
C:\WINDOWS\temp\HTT2BB1.tmp moved successfully.
C:\WINDOWS\temp\HTT2D70.tmp moved successfully.
C:\WINDOWS\temp\HTT2DAF.tmp moved successfully.
C:\WINDOWS\temp\HTT3094.tmp moved successfully.
C:\WINDOWS\temp\HTT3251.tmp moved successfully.
C:\WINDOWS\temp\HTT33DA.tmp moved successfully.
C:\WINDOWS\temp\HTT3622.tmp moved successfully.
C:\WINDOWS\temp\HTT379F.tmp moved successfully.
C:\WINDOWS\temp\HTT391E.tmp moved successfully.
C:\WINDOWS\temp\HTT3985.tmp moved successfully.
C:\WINDOWS\temp\HTT39D.tmp moved successfully.
C:\WINDOWS\temp\HTT39E.tmp moved successfully.
C:\WINDOWS\temp\HTT3A73.tmp moved successfully.
C:\WINDOWS\temp\HTT3B88.tmp moved successfully.
C:\WINDOWS\temp\HTT3D7.tmp moved successfully.
C:\WINDOWS\temp\HTT3D96.tmp moved successfully.
C:\WINDOWS\temp\HTT3EEF.tmp moved successfully.
C:\WINDOWS\temp\HTT4376.tmp moved successfully.
C:\WINDOWS\temp\HTT43AC.tmp moved successfully.
C:\WINDOWS\temp\HTT4642.tmp moved successfully.
C:\WINDOWS\temp\HTT4698.tmp moved successfully.
C:\WINDOWS\temp\HTT4911.tmp moved successfully.
C:\WINDOWS\temp\HTT4A46.tmp moved successfully.
C:\WINDOWS\temp\HTT4AF5.tmp moved successfully.
C:\WINDOWS\temp\HTT4D30.tmp moved successfully.
C:\WINDOWS\temp\HTT4D84.tmp moved successfully.
C:\WINDOWS\temp\HTT4E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT4FF3.tmp moved successfully.
C:\WINDOWS\temp\HTT5019.tmp moved successfully.
C:\WINDOWS\temp\HTT51F0.tmp moved successfully.
C:\WINDOWS\temp\HTT535A.tmp moved successfully.
C:\WINDOWS\temp\HTT544A.tmp moved successfully.
C:\WINDOWS\temp\HTT582D.tmp moved successfully.
C:\WINDOWS\temp\HTT588.tmp moved successfully.
C:\WINDOWS\temp\HTT5A29.tmp moved successfully.
C:\WINDOWS\temp\HTT5A6B.tmp moved successfully.
C:\WINDOWS\temp\HTT5ADE.tmp moved successfully.
C:\WINDOWS\temp\HTT5B77.tmp moved successfully.
C:\WINDOWS\temp\HTT5C38.tmp moved successfully.
C:\WINDOWS\temp\HTT5C79.tmp moved successfully.
C:\WINDOWS\temp\HTT5E0A.tmp moved successfully.
C:\WINDOWS\temp\HTT5E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT61F8.tmp moved successfully.
C:\WINDOWS\temp\HTT625F.tmp moved successfully.
C:\WINDOWS\temp\HTT6359.tmp moved successfully.
C:\WINDOWS\temp\HTT6367.tmp moved successfully.
C:\WINDOWS\temp\HTT65F3.tmp moved successfully.
C:\WINDOWS\temp\HTT6711.tmp moved successfully.
C:\WINDOWS\temp\HTT6987.tmp moved successfully.
C:\WINDOWS\temp\HTT69F2.tmp moved successfully.
C:\WINDOWS\temp\HTT6ABA.tmp moved successfully.
C:\WINDOWS\temp\HTT6CEE.tmp moved successfully.
C:\WINDOWS\temp\HTT6D11.tmp moved successfully.
C:\WINDOWS\temp\HTT6FD9.tmp moved successfully.
C:\WINDOWS\temp\HTT70EF.tmp moved successfully.
C:\WINDOWS\temp\HTT733F.tmp moved successfully.
C:\WINDOWS\temp\HTT7626.tmp moved successfully.
C:\WINDOWS\temp\HTT78C1.tmp moved successfully.
C:\WINDOWS\temp\HTT7A8C.tmp moved successfully.
C:\WINDOWS\temp\HTT7AD1.tmp moved successfully.
C:\WINDOWS\temp\HTT7B2F.tmp moved successfully.
C:\WINDOWS\temp\HTT7B3.tmp moved successfully.
C:\WINDOWS\temp\HTT7E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT89C2.tmp moved successfully.
C:\WINDOWS\temp\HTT8B98.tmp moved successfully.
C:\WINDOWS\temp\HTT8BDC.tmp moved successfully.
C:\WINDOWS\temp\HTT8C74.tmp moved successfully.
C:\WINDOWS\temp\HTT8DB4.tmp moved successfully.
C:\WINDOWS\temp\HTT8EE2.tmp moved successfully.
C:\WINDOWS\temp\HTT9099.tmp moved successfully.
C:\WINDOWS\temp\HTT9159.tmp moved successfully.
C:\WINDOWS\temp\HTT9231.tmp moved successfully.
C:\WINDOWS\temp\HTT939D.tmp moved successfully.
C:\WINDOWS\temp\HTT9474.tmp moved successfully.
C:\WINDOWS\temp\HTT96D8.tmp moved successfully.
C:\WINDOWS\temp\HTT97A3.tmp moved successfully.
C:\WINDOWS\temp\HTT9A04.tmp moved successfully.
C:\WINDOWS\temp\HTT9BC9.tmp moved successfully.
C:\WINDOWS\temp\HTT9C39.tmp moved successfully.
C:\WINDOWS\temp\HTT9D30.tmp moved successfully.
C:\WINDOWS\temp\HTT9F3F.tmp moved successfully.
C:\WINDOWS\temp\HTTA0BA.tmp moved successfully.
C:\WINDOWS\temp\HTTA1D5.tmp moved successfully.
C:\WINDOWS\temp\HTTA256.tmp moved successfully.
C:\WINDOWS\temp\HTTA725.tmp moved successfully.
C:\WINDOWS\temp\HTTAA1C.tmp moved successfully.
C:\WINDOWS\temp\HTTAADF.tmp moved successfully.
C:\WINDOWS\temp\HTTAD9F.tmp moved successfully.
C:\WINDOWS\temp\HTTADF5.tmp moved successfully.
C:\WINDOWS\temp\HTTAFFC.tmp moved successfully.
C:\WINDOWS\temp\HTTB00B.tmp moved successfully.
C:\WINDOWS\temp\HTTB0FF.tmp moved successfully.
C:\WINDOWS\temp\HTTB113.tmp moved successfully.
C:\WINDOWS\temp\HTTB26E.tmp moved successfully.
C:\WINDOWS\temp\HTTB2F7.tmp moved successfully.
C:\WINDOWS\temp\HTTB6C4.tmp moved successfully.
C:\WINDOWS\temp\HTTB75D.tmp moved successfully.
C:\WINDOWS\temp\HTTB9F5.tmp moved successfully.
C:\WINDOWS\temp\HTTBA4F.tmp moved successfully.
C:\WINDOWS\temp\HTTBB75.tmp moved successfully.
C:\WINDOWS\temp\HTTBC8A.tmp moved successfully.
C:\WINDOWS\temp\HTTBF8.tmp moved successfully.
C:\WINDOWS\temp\HTTBFF.tmp moved successfully.
C:\WINDOWS\temp\HTTC040.tmp moved successfully.
C:\WINDOWS\temp\HTTC1AD.tmp moved successfully.
C:\WINDOWS\temp\HTTC1E0.tmp moved successfully.
C:\WINDOWS\temp\HTTC23C.tmp moved successfully.
C:\WINDOWS\temp\HTTC4ED.tmp moved successfully.
C:\WINDOWS\temp\HTTC4FB.tmp moved successfully.
C:\WINDOWS\temp\HTTC50B.tmp moved successfully.
C:\WINDOWS\temp\HTTC5A5.tmp moved successfully.
C:\WINDOWS\temp\HTTC5A6.tmp moved successfully.
C:\WINDOWS\temp\HTTC858.tmp moved successfully.
C:\WINDOWS\temp\HTTC90.tmp moved successfully.
C:\WINDOWS\temp\HTTCB85.tmp moved successfully.
C:\WINDOWS\temp\HTTCBC4.tmp moved successfully.
C:\WINDOWS\temp\HTTCBD9.tmp moved successfully.
C:\WINDOWS\temp\HTTCC6E.tmp moved successfully.
C:\WINDOWS\temp\HTTCEC4.tmp moved successfully.
C:\WINDOWS\temp\HTTCF6E.tmp moved successfully.
C:\WINDOWS\temp\HTTD109.tmp moved successfully.
C:\WINDOWS\temp\HTTD121.tmp moved successfully.
C:\WINDOWS\temp\HTTD122.tmp moved successfully.
C:\WINDOWS\temp\HTTD1AA.tmp moved successfully.
C:\WINDOWS\temp\HTTD2A7.tmp moved successfully.
C:\WINDOWS\temp\HTTD331.tmp moved successfully.
C:\WINDOWS\temp\HTTD3B1.tmp moved successfully.
C:\WINDOWS\temp\HTTD3C1.tmp moved successfully.
C:\WINDOWS\temp\HTTD48.tmp moved successfully.
C:\WINDOWS\temp\HTTD595.tmp moved successfully.
C:\WINDOWS\temp\HTTD5F0.tmp moved successfully.
C:\WINDOWS\temp\HTTD6FE.tmp moved successfully.
C:\WINDOWS\temp\HTTD77E.tmp moved successfully.
C:\WINDOWS\temp\HTTD9F6.tmp moved successfully.
C:\WINDOWS\temp\HTTDA54.tmp moved successfully.
C:\WINDOWS\temp\HTTDAF9.tmp moved successfully.
C:\WINDOWS\temp\HTTDB29.tmp moved successfully.
C:\WINDOWS\temp\HTTDDF8.tmp moved successfully.
C:\WINDOWS\temp\HTTE246.tmp moved successfully.
C:\WINDOWS\temp\HTTE320.tmp moved successfully.
C:\WINDOWS\temp\HTTE4C1.tmp moved successfully.
C:\WINDOWS\temp\HTTE5D6.tmp moved successfully.
C:\WINDOWS\temp\HTTE655.tmp moved successfully.
C:\WINDOWS\temp\HTTE70C.tmp moved successfully.
C:\WINDOWS\temp\HTTE87C.tmp moved successfully.
C:\WINDOWS\temp\HTTE88A.tmp moved successfully.
C:\WINDOWS\temp\HTTE9DF.tmp moved successfully.
C:\WINDOWS\temp\HTTEB4.tmp moved successfully.
C:\WINDOWS\temp\HTTF12C.tmp moved successfully.
C:\WINDOWS\temp\HTTF26B.tmp moved successfully.
C:\WINDOWS\temp\HTTF312.tmp moved successfully.
C:\WINDOWS\temp\HTTF3E9.tmp moved successfully.
C:\WINDOWS\temp\HTTF43B.tmp moved successfully.
C:\WINDOWS\temp\HTTF4FB.tmp moved successfully.
C:\WINDOWS\temp\HTTF5C7.tmp moved successfully.
C:\WINDOWS\temp\HTTFBF4.tmp moved successfully.
C:\WINDOWS\temp\HTTFDE2.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: AppData
->Temp folder emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LMK
->Temp folder emptied: 21369296 bytes
->Temporary Internet Files folder emptied: 10742157 bytes
->Java cache emptied: 1329582 bytes
->FireFox cache emptied: 45520010 bytes
->Google Chrome cache emptied: 176857360 bytes
->Flash cache emptied: 55723 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 629212 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50453 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 245.00 mb
[EMPTYFLASH]
User: All Users
User: AppData
User: Default
User: Default User
User: LMK
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.22.3 log created on 05162011_130318
Files\Folders moved on Reboot...
C:\Users\LMK\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
LOG
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
ADS C:\ProgramData\Temp:D79367EB deleted successfully.
ADS C:\ProgramData\Temp:5886DCB8 deleted successfully.
ADS C:\ProgramData\Temp:81E7CF6A deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ deleted successfully.
C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{E0E899AB-F487-11D5-8D29-0050BA6940E3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E0E899AB-F487-11D5-8D29-0050BA6940E3}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_USERS\S-1-5-21-2422293349-1813714993-3853358830-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
File C:\Program Files (x86)\ooVoo_Chat\tbooVo.dll not found.
========== FILES ==========
C:\Windows\SysWow64\ezsidmv.dat moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAB63.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP26B3.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7F6D.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB155.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPEBF.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI5E1C.tmp moved successfully.
C:\WINDOWS\Installer\MSI7502.tmp moved successfully.
C:\WINDOWS\Installer\MSIBD97.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt12E.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt4672.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\6b986fcefc4ddf45d2c157ae08ee07e4\BITDBB0.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\9e01b17e8c3470e336ce3a5749e34468\BIT5B55.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\e2ae778f2037152039ec560f0abd6f3e\BITDD08.tmp moved successfully.
C:\WINDOWS\temp\HTT1044.tmp moved successfully.
C:\WINDOWS\temp\HTT1059.tmp moved successfully.
C:\WINDOWS\temp\HTT1281.tmp moved successfully.
C:\WINDOWS\temp\HTT1379.tmp moved successfully.
C:\WINDOWS\temp\HTT1549.tmp moved successfully.
C:\WINDOWS\temp\HTT1A43.tmp moved successfully.
C:\WINDOWS\temp\HTT1C87.tmp moved successfully.
C:\WINDOWS\temp\HTT1D69.tmp moved successfully.
C:\WINDOWS\temp\HTT2157.tmp moved successfully.
C:\WINDOWS\temp\HTT2469.tmp moved successfully.
C:\WINDOWS\temp\HTT248A.tmp moved successfully.
C:\WINDOWS\temp\HTT24A7.tmp moved successfully.
C:\WINDOWS\temp\HTT2796.tmp moved successfully.
C:\WINDOWS\temp\HTT29CB.tmp moved successfully.
C:\WINDOWS\temp\HTT2B12.tmp moved successfully.
C:\WINDOWS\temp\HTT2B4F.tmp moved successfully.
C:\WINDOWS\temp\HTT2BB1.tmp moved successfully.
C:\WINDOWS\temp\HTT2D70.tmp moved successfully.
C:\WINDOWS\temp\HTT2DAF.tmp moved successfully.
C:\WINDOWS\temp\HTT3094.tmp moved successfully.
C:\WINDOWS\temp\HTT3251.tmp moved successfully.
C:\WINDOWS\temp\HTT33DA.tmp moved successfully.
C:\WINDOWS\temp\HTT3622.tmp moved successfully.
C:\WINDOWS\temp\HTT379F.tmp moved successfully.
C:\WINDOWS\temp\HTT391E.tmp moved successfully.
C:\WINDOWS\temp\HTT3985.tmp moved successfully.
C:\WINDOWS\temp\HTT39D.tmp moved successfully.
C:\WINDOWS\temp\HTT39E.tmp moved successfully.
C:\WINDOWS\temp\HTT3A73.tmp moved successfully.
C:\WINDOWS\temp\HTT3B88.tmp moved successfully.
C:\WINDOWS\temp\HTT3D7.tmp moved successfully.
C:\WINDOWS\temp\HTT3D96.tmp moved successfully.
C:\WINDOWS\temp\HTT3EEF.tmp moved successfully.
C:\WINDOWS\temp\HTT4376.tmp moved successfully.
C:\WINDOWS\temp\HTT43AC.tmp moved successfully.
C:\WINDOWS\temp\HTT4642.tmp moved successfully.
C:\WINDOWS\temp\HTT4698.tmp moved successfully.
C:\WINDOWS\temp\HTT4911.tmp moved successfully.
C:\WINDOWS\temp\HTT4A46.tmp moved successfully.
C:\WINDOWS\temp\HTT4AF5.tmp moved successfully.
C:\WINDOWS\temp\HTT4D30.tmp moved successfully.
C:\WINDOWS\temp\HTT4D84.tmp moved successfully.
C:\WINDOWS\temp\HTT4E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT4FF3.tmp moved successfully.
C:\WINDOWS\temp\HTT5019.tmp moved successfully.
C:\WINDOWS\temp\HTT51F0.tmp moved successfully.
C:\WINDOWS\temp\HTT535A.tmp moved successfully.
C:\WINDOWS\temp\HTT544A.tmp moved successfully.
C:\WINDOWS\temp\HTT582D.tmp moved successfully.
C:\WINDOWS\temp\HTT588.tmp moved successfully.
C:\WINDOWS\temp\HTT5A29.tmp moved successfully.
C:\WINDOWS\temp\HTT5A6B.tmp moved successfully.
C:\WINDOWS\temp\HTT5ADE.tmp moved successfully.
C:\WINDOWS\temp\HTT5B77.tmp moved successfully.
C:\WINDOWS\temp\HTT5C38.tmp moved successfully.
C:\WINDOWS\temp\HTT5C79.tmp moved successfully.
C:\WINDOWS\temp\HTT5E0A.tmp moved successfully.
C:\WINDOWS\temp\HTT5E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT61F8.tmp moved successfully.
C:\WINDOWS\temp\HTT625F.tmp moved successfully.
C:\WINDOWS\temp\HTT6359.tmp moved successfully.
C:\WINDOWS\temp\HTT6367.tmp moved successfully.
C:\WINDOWS\temp\HTT65F3.tmp moved successfully.
C:\WINDOWS\temp\HTT6711.tmp moved successfully.
C:\WINDOWS\temp\HTT6987.tmp moved successfully.
C:\WINDOWS\temp\HTT69F2.tmp moved successfully.
C:\WINDOWS\temp\HTT6ABA.tmp moved successfully.
C:\WINDOWS\temp\HTT6CEE.tmp moved successfully.
C:\WINDOWS\temp\HTT6D11.tmp moved successfully.
C:\WINDOWS\temp\HTT6FD9.tmp moved successfully.
C:\WINDOWS\temp\HTT70EF.tmp moved successfully.
C:\WINDOWS\temp\HTT733F.tmp moved successfully.
C:\WINDOWS\temp\HTT7626.tmp moved successfully.
C:\WINDOWS\temp\HTT78C1.tmp moved successfully.
C:\WINDOWS\temp\HTT7A8C.tmp moved successfully.
C:\WINDOWS\temp\HTT7AD1.tmp moved successfully.
C:\WINDOWS\temp\HTT7B2F.tmp moved successfully.
C:\WINDOWS\temp\HTT7B3.tmp moved successfully.
C:\WINDOWS\temp\HTT7E7E.tmp moved successfully.
C:\WINDOWS\temp\HTT89C2.tmp moved successfully.
C:\WINDOWS\temp\HTT8B98.tmp moved successfully.
C:\WINDOWS\temp\HTT8BDC.tmp moved successfully.
C:\WINDOWS\temp\HTT8C74.tmp moved successfully.
C:\WINDOWS\temp\HTT8DB4.tmp moved successfully.
C:\WINDOWS\temp\HTT8EE2.tmp moved successfully.
C:\WINDOWS\temp\HTT9099.tmp moved successfully.
C:\WINDOWS\temp\HTT9159.tmp moved successfully.
C:\WINDOWS\temp\HTT9231.tmp moved successfully.
C:\WINDOWS\temp\HTT939D.tmp moved successfully.
C:\WINDOWS\temp\HTT9474.tmp moved successfully.
C:\WINDOWS\temp\HTT96D8.tmp moved successfully.
C:\WINDOWS\temp\HTT97A3.tmp moved successfully.
C:\WINDOWS\temp\HTT9A04.tmp moved successfully.
C:\WINDOWS\temp\HTT9BC9.tmp moved successfully.
C:\WINDOWS\temp\HTT9C39.tmp moved successfully.
C:\WINDOWS\temp\HTT9D30.tmp moved successfully.
C:\WINDOWS\temp\HTT9F3F.tmp moved successfully.
C:\WINDOWS\temp\HTTA0BA.tmp moved successfully.
C:\WINDOWS\temp\HTTA1D5.tmp moved successfully.
C:\WINDOWS\temp\HTTA256.tmp moved successfully.
C:\WINDOWS\temp\HTTA725.tmp moved successfully.
C:\WINDOWS\temp\HTTAA1C.tmp moved successfully.
C:\WINDOWS\temp\HTTAADF.tmp moved successfully.
C:\WINDOWS\temp\HTTAD9F.tmp moved successfully.
C:\WINDOWS\temp\HTTADF5.tmp moved successfully.
C:\WINDOWS\temp\HTTAFFC.tmp moved successfully.
C:\WINDOWS\temp\HTTB00B.tmp moved successfully.
C:\WINDOWS\temp\HTTB0FF.tmp moved successfully.
C:\WINDOWS\temp\HTTB113.tmp moved successfully.
C:\WINDOWS\temp\HTTB26E.tmp moved successfully.
C:\WINDOWS\temp\HTTB2F7.tmp moved successfully.
C:\WINDOWS\temp\HTTB6C4.tmp moved successfully.
C:\WINDOWS\temp\HTTB75D.tmp moved successfully.
C:\WINDOWS\temp\HTTB9F5.tmp moved successfully.
C:\WINDOWS\temp\HTTBA4F.tmp moved successfully.
C:\WINDOWS\temp\HTTBB75.tmp moved successfully.
C:\WINDOWS\temp\HTTBC8A.tmp moved successfully.
C:\WINDOWS\temp\HTTBF8.tmp moved successfully.
C:\WINDOWS\temp\HTTBFF.tmp moved successfully.
C:\WINDOWS\temp\HTTC040.tmp moved successfully.
C:\WINDOWS\temp\HTTC1AD.tmp moved successfully.
C:\WINDOWS\temp\HTTC1E0.tmp moved successfully.
C:\WINDOWS\temp\HTTC23C.tmp moved successfully.
C:\WINDOWS\temp\HTTC4ED.tmp moved successfully.
C:\WINDOWS\temp\HTTC4FB.tmp moved successfully.
C:\WINDOWS\temp\HTTC50B.tmp moved successfully.
C:\WINDOWS\temp\HTTC5A5.tmp moved successfully.
C:\WINDOWS\temp\HTTC5A6.tmp moved successfully.
C:\WINDOWS\temp\HTTC858.tmp moved successfully.
C:\WINDOWS\temp\HTTC90.tmp moved successfully.
C:\WINDOWS\temp\HTTCB85.tmp moved successfully.
C:\WINDOWS\temp\HTTCBC4.tmp moved successfully.
C:\WINDOWS\temp\HTTCBD9.tmp moved successfully.
C:\WINDOWS\temp\HTTCC6E.tmp moved successfully.
C:\WINDOWS\temp\HTTCEC4.tmp moved successfully.
C:\WINDOWS\temp\HTTCF6E.tmp moved successfully.
C:\WINDOWS\temp\HTTD109.tmp moved successfully.
C:\WINDOWS\temp\HTTD121.tmp moved successfully.
C:\WINDOWS\temp\HTTD122.tmp moved successfully.
C:\WINDOWS\temp\HTTD1AA.tmp moved successfully.
C:\WINDOWS\temp\HTTD2A7.tmp moved successfully.
C:\WINDOWS\temp\HTTD331.tmp moved successfully.
C:\WINDOWS\temp\HTTD3B1.tmp moved successfully.
C:\WINDOWS\temp\HTTD3C1.tmp moved successfully.
C:\WINDOWS\temp\HTTD48.tmp moved successfully.
C:\WINDOWS\temp\HTTD595.tmp moved successfully.
C:\WINDOWS\temp\HTTD5F0.tmp moved successfully.
C:\WINDOWS\temp\HTTD6FE.tmp moved successfully.
C:\WINDOWS\temp\HTTD77E.tmp moved successfully.
C:\WINDOWS\temp\HTTD9F6.tmp moved successfully.
C:\WINDOWS\temp\HTTDA54.tmp moved successfully.
C:\WINDOWS\temp\HTTDAF9.tmp moved successfully.
C:\WINDOWS\temp\HTTDB29.tmp moved successfully.
C:\WINDOWS\temp\HTTDDF8.tmp moved successfully.
C:\WINDOWS\temp\HTTE246.tmp moved successfully.
C:\WINDOWS\temp\HTTE320.tmp moved successfully.
C:\WINDOWS\temp\HTTE4C1.tmp moved successfully.
C:\WINDOWS\temp\HTTE5D6.tmp moved successfully.
C:\WINDOWS\temp\HTTE655.tmp moved successfully.
C:\WINDOWS\temp\HTTE70C.tmp moved successfully.
C:\WINDOWS\temp\HTTE87C.tmp moved successfully.
C:\WINDOWS\temp\HTTE88A.tmp moved successfully.
C:\WINDOWS\temp\HTTE9DF.tmp moved successfully.
C:\WINDOWS\temp\HTTEB4.tmp moved successfully.
C:\WINDOWS\temp\HTTF12C.tmp moved successfully.
C:\WINDOWS\temp\HTTF26B.tmp moved successfully.
C:\WINDOWS\temp\HTTF312.tmp moved successfully.
C:\WINDOWS\temp\HTTF3E9.tmp moved successfully.
C:\WINDOWS\temp\HTTF43B.tmp moved successfully.
C:\WINDOWS\temp\HTTF4FB.tmp moved successfully.
C:\WINDOWS\temp\HTTF5C7.tmp moved successfully.
C:\WINDOWS\temp\HTTFBF4.tmp moved successfully.
C:\WINDOWS\temp\HTTFDE2.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: AppData
->Temp folder emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LMK
->Temp folder emptied: 21369296 bytes
->Temporary Internet Files folder emptied: 10742157 bytes
->Java cache emptied: 1329582 bytes
->FireFox cache emptied: 45520010 bytes
->Google Chrome cache emptied: 176857360 bytes
->Flash cache emptied: 55723 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 629212 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50453 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 245.00 mb
[EMPTYFLASH]
User: All Users
User: AppData
User: Default
User: Default User
User: LMK
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.22.3 log created on 05162011_130318
Files\Folders moved on Reboot...
C:\Users\LMK\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
Re: Prosim o kontrolu Logu
Změnilo se něco?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosim o kontrolu Logu
Po zapnuti notebooku je stale fyzicka pamat vytazena na 33%, pricom nespustam nic
Re: Prosim o kontrolu Logu
V nouzovém režimu to vypadá jak?
Ale máte win7 a ty si klidně můžou vzít 1,2Gb ram.
Ale máte win7 a ty si klidně můžou vzít 1,2Gb ram.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosim o kontrolu Logu
Momentalne mi ide stahovat z internetu v pohode a aj externy disk som minule odpojil v pohode bez komplikacii.
Ak by sa vyskytli nejake problemy, napisem Vam
DAKUJEM VELMI PEKNE ZA POMOC
Ak by sa vyskytli nejake problemy, napisem Vam
DAKUJEM VELMI PEKNE ZA POMOC
Re: Prosim o kontrolu Logu
:arrow:Otevřete znovu Otm a klikněte na tlačítko CleanUp,potvrďte ok
Není zač, pokud nejsou problémy, je to vše .
Není zač, pokud nejsou problémy, je to vše
.Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosim o kontrolu Logu
Jediny problem je to ze v poslednej dobe mi zlyhava ovladac na graficku kartu. Cela obrazovka zcerna a nasledne sa zapne, vyhodi hlasku o tom ze ovladac zlyhal. Dnes ale sa to stalo aj s tym ze mi vyhodilo systemovu modru obrazovku a robilo tam physical memory dump.
Re: Prosim o kontrolu Logu
Mrkněte se do složky C:\WINDOWS\ minidump, zda tam nejsou nějaké soubory, pokud ano, vložte je zde do přílohy.
Zkuste ovladač přeinstalovat, ale obávám se, že Vám odchází grafická karta.
Zkuste ovladač přeinstalovat, ale obávám se, že Vám odchází grafická karta.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosim o kontrolu Logu
skus najprv preinstalovat directX
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosim o kontrolu Logu
Dělá to opravdu ovladač od grafiky, zkoušel jste stahnmout nejnovější?
http://pa.sosgames.cz/modules.php?name= ... opic&p=186
http://pa.sosgames.cz/modules.php?name= ... opic&p=186
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?