VIRY.CZ

OTL Extras logfile created on: 28.4.2014 9:07:02 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\TEST1\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,26 Gb Available Physical Memory | 62,87% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,23% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 136,92 Gb Free Space | 29,40% Space Free | Partition Type: NTFS

Computer Name: TEST-45256F6D53 | User Name: TEST1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1292428093-308236825-725345543-1010\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [CEWE prezentace fotografií] -- "C:\Program Files\Fotolab\Fotolab Fotosvet 4\CEWE prezentace fotografií.exe" -d "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotolab Fotosvet 4] -- "C:\Program Files\Fotolab\Fotolab Fotosvet 4\Fotolab Fotosvet 4.exe" "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Warcraft III\Warcraft III.exe" = C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ -- (ICQ, LLC.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Games\World_of_Tanks\WorldOfTanks.exe" = C:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks -- (Wargaming.net)
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe" = C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes -- (wargaming.net)
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe" = C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II -- ()
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe" = C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update -- (Ubisoft)
"C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe" = C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay -- (Ubisoft Entertainment)
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\World of Warcraft\Launcher.patch.exe" = C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe" = C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher -- (Wargaming.net)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"\??\C:\WINDOWS\system32\winlogon.exe" = \??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:winlogon -- (Microsoft Corporation)
"C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe" = C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2 -- ()
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\WINDOWS\system32\javaw.exe" = C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
"C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe" = C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe:*:Enabled:Mount & Blade: Warband -- ( Taleworlds Entertainment)
"C:\Soldat\Soldat.exe" = C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl -- (Michal Marcinkowski)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe" = C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe:*:Enabled:Age of Empires II Expansion -- (Microsoft Corporation)
"C:\Program Files\Java\jre7\bin\javaw.exe" = C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"C:\Program Files\Battle.net\Battle.net.exe" = C:\Program Files\Battle.net\Battle.net.exe:*:Enabled:Battle.net -- (Blizzard Entertainment)
"C:\Program Files\Hearthstone\Hearthstone.exe" = C:\Program Files\Hearthstone\Hearthstone.exe:*:Enabled:Hearthstone -- ()
"C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe" = C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe:*:Enabled:Loadout -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{044F9133-B8D7-4d11-BF39-803FA20F5C8B}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196E77C5-F524-4B50-BD1A-2C21EEE9B8F7}" = Microsoft SQL Server 2008 Common Files
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.6.5
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F698102-5739-441E-96F0-74F4EA540F06}" = Attansic Ethernet Utility
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}" = SQL Server System CLR Types
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service
"{4815BD99-96A4-49FE-A885-DCF06E9E4E78}" = Microsoft SQL Server 2008 Database Engine Shared
"{4908C75E-E5E2-43F7-B1DF-023CBA831029}" = Nero 7 Premium
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A5667B2-5D13-46C2-85B5-9D46A6096F61}" = Secure Download Manager
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}" = Microsoft SQL Server 2008 Database Engine Services
"{5B96BF29-1CC0-42FB-AB2C-1E12E3226E7A}" = Bing Bar
"{5BE1E709-30E4-3D6D-A708-96CE8D5E5E8D}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu
"{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}" = GameSpy Comrade
"{62C68336-B969-4097-B0BD-A3A0FBFD59C1}" = Mumble 1.2.3
"{63CEA2E4-4FE7-4F2C-B388-C1313D24157C}" = SPORE™ Galaktická dobrodružství
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.14
"{842FAF7C-50EF-4463-9B8F-6222E1384D7D}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87D9C3BD-06DA-462A-8447-0B44718AACE6}" = Full Tilt Poker.Org
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D6D76A6-4328-49E8-97A7-531A74841DA5}" = Microsoft SQL Server 2008 Setup Support Files (English)
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.6 - Czech
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = Microsoft SQL Server 2008 Database Engine Services
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}" = Microsoft SQL Server VSS Writer
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C580908C-B3BA-4C19-BD60-16F02F272201}" = BattleForge™
"{C688457E-03FD-4941-923B-A27F4D42A7DD}" = Microsoft SQL Server 2008 Browser
"{C69405BB-27AF-4940-B3DA-04910B4DFD23}_is1" = aTube Catcher 1.0
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D8087907-E255-3A41-A46D-D0F798709C71}" = Microsoft Visual C++ 2008 Express Edition with SP1 - ENU
"{D9D937B0-E842-4130-9588-B948E876904A}" = Microsoft SQL Server 2008 Native Client
"{DA2A851C-6E2B-4677-9DA5-5ED9A3B227E2}" = Quake Live Internet Explorer Plugin
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1DC7648-8623-442F-92B7-E118DF61872E}" = Microsoft SQL Server 2008 RsFx Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F5E87B12-3C27-452F-8E78-21D42164FD83}" = Microsoft SQL Server 2008 Management Objects
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"AtcL1" = Attansic L1 Gigabit Ethernet Driver
"aTube Catcher" = aTube Catcher
"Avast" = avast! Free Antivirus
"avast!" = avast! Antivirus
"Battle.net" = Battle.net
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"FMCODEC" = FM Screen Capture Codec (Remove Only)
"Fotolab Fotosvet 4" = Fotolab Fotosvet 4
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"Heroes of Might and Magic 3 Complete_is1" = Heroes of Might and Magic 3 Complete
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.9.5 (Standard)
"Lazarus_is1" = Lazarus 0.9.28.2
"League of Legends_is1" = League of Legends
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft Visual C++ 2008 Express Edition with SP1 - ENU" = Microsoft Visual C++ 2008 Express Edition with SP1 - ENU
"Mount&Blade Warband" = Mount&Blade Warband
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"novaPDF Pro v5_is1" = novaPDF Pro v5 (novaPDF Professional Desktop 5.5 printer)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenTTD" = OpenTTD 1.2.1
"PDF Converter_is1" = PDF Converter 3.0
"PunkBusterSvc" = PunkBuster Services
"Qt OpenSource 4.7.3 - C:_Qt_4.7.3" = Qt OpenSource 4.7.3
"rajče.net_is1" = rajče verze 59 sestavení 229
"Smart PDF Creator_is1" = Smart PDF Creator 5.1.0.397
"Soldat_is1" = Soldat 1.6.5
"Steam App 208090" = Loadout
"Steam App 240" = Counter-Strike: Source
"Steam App 440" = Team Fortress 2
"Steam App 48700" = Mount & Blade: Warband
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"The Mighty Quest For Epic Loot_is1" = The Mighty Quest For Epic Loot verze 1.213647
"Totalcmd" = Total Commander (Remove or Repair)
"Trainer World of Tanks 0.5.00" = Trainer World of Tanks 0.5.00
"Tunngle beta_is1" = Tunngle beta
"uTorrent" = µTorrent
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"World of Warcraft" = World of Warcraft
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1292428093-308236825-725345543-1010\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Antivirus Events ]
Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\jquery-2.1.0.min.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\mutation-summary.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\localization.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\browserSpecificScript.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\number_highlighting_builder.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\pnr.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\fpnr.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\CRX_INSTALL\contentscript.js
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\DECODED_IMAGES
failed, 00000005.

Error - 27.4.2014 9:13:24 | Computer Name = TEST-45256F6D53 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\TEST1\Local Settings\temp\scoped_dir_3276_28689\DECODED_MESSAGE_CATALOGS
failed, 00000005.

[ Application Events ]
Error - 26.4.2014 18:58:09 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Aktualizace SP-3 (Service Pack 3) produktu Office 2003:
MAINSP3 produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 26.4.2014 18:58:40 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source
could be found for product Microsoft .NET Framework 1.1. The Windows installer
cannot continue.

Error - 26.4.2014 18:58:41 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 1023
Description = Aktualizaci {C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0} produktu Microsoft
.NET Framework 1.1 nebylo možné nainstalovat. Kód chyby: 1603. Další informace
naleznete v souboru protokolu C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error - 26.4.2014 18:58:41 | Computer Name = TEST-45256F6D53 | Source = NativeWrapper | ID = 5000
Description =

Error - 27.4.2014 5:12:50 | Computer Name = TEST-45256F6D53 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.75.0.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 27.4.2014 16:25:28 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 11311
Description = Produkt: Microsoft Office Professional Edition 2003 - Chyba 1311.
Zdrojový soubor nebyl nalezen(soubor CAB): C:\MSOCache\All Users\90000405-6000-11D3-8CFE-0150048383C9\PA561401.CAB.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.

Error - 27.4.2014 16:25:30 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Aktualizace SP-3 (Service Pack 3) produktu Office 2003:
MAINSP3 produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 27.4.2014 16:25:57 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source
could be found for product Microsoft .NET Framework 1.1. The Windows installer
cannot continue.

Error - 27.4.2014 16:25:58 | Computer Name = TEST-45256F6D53 | Source = MsiInstaller | ID = 1023
Description = Aktualizaci {C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0} produktu Microsoft
.NET Framework 1.1 nebylo možné nainstalovat. Kód chyby: 1603. Další informace
naleznete v souboru protokolu C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error - 27.4.2014 16:25:59 | Computer Name = TEST-45256F6D53 | Source = NativeWrapper | ID = 5000
Description =

[ System Events ]
Error - 26.4.2014 18:58:10 | Computer Name = TEST-45256F6D53 | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace Microsoft Office 2003 Service Pack 3 (SP3).

Error - 26.4.2014 18:58:42 | Computer Name = TEST-45256F6D53 | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace zabezpečení pro rozhraní Microsoft .NET
Framework 1.1 SP1 v systémech Windows XP, Windows Vista a Windows Server 2008 platformy
x86 (KB2833941).

Error - 27.4.2014 4:17:55 | Computer Name = TEST-45256F6D53 | Source = Service Control Manager | ID = 7034
Description = Služba avast! Antivirus byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 27.4.2014 5:13:17 | Computer Name = TEST-45256F6D53 | Source = Service Control Manager | ID = 7034
Description = Služba avast! Antivirus byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 27.4.2014 9:45:09 | Computer Name = TEST-45256F6D53 | Source = Service Control Manager | ID = 7034
Description = Služba avast! Antivirus byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 27.4.2014 16:24:23 | Computer Name = TEST-45256F6D53 | Source = Service Control Manager | ID = 7034
Description = Služba avast! Antivirus byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 27.4.2014 16:25:30 | Computer Name = TEST-45256F6D53 | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace Microsoft Office 2003 Service Pack 3 (SP3).

Error - 27.4.2014 16:25:59 | Computer Name = TEST-45256F6D53 | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace zabezpečení pro rozhraní Microsoft .NET
Framework 1.1 SP1 v systémech Windows XP, Windows Vista a Windows Server 2008 platformy
x86 (KB2833941).

Error - 28.4.2014 2:50:50 | Computer Name = TEST-45256F6D53 | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.1 pro síťovou kartu s adresou 001E8C26A15C
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 28.4.2014 3:03:10 | Computer Name = TEST-45256F6D53 | Source = Service Control Manager | ID = 7034
Description = Služba avast! Antivirus byla neočekávaně ukončena. Tento stav nastal
již 1krát.

< End of report >

OTL logfile created on: 28.4.2014 9:07:02 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\TEST1\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,26 Gb Available Physical Memory | 62,87% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,23% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 136,92 Gb Free Space | 29,40% Space Free | Partition Type: NTFS

Computer Name: TEST-45256F6D53 | User Name: TEST1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.04.28 09:05:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\TEST1\Dokumenty\Downloads\OTL.exe
PRC - [2014.04.26 23:01:39 | 003,873,704 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.04.24 02:33:15 | 000,841,032 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013.02.09 00:45:50 | 000,008,704 | ---- | M] (Hi-Rez Studios) -- C:\Program Files\Hi-Rez Studios\HiPatchService.exe
PRC - [2010.02.13 03:49:04 | 000,685,816 | ---- | M] (Tunngle.net GmbH) -- C:\Program Files\Tunngle\TnglCtrl.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.11.16 20:04:20 | 000,139,264 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006.11.16 19:58:32 | 000,884,736 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe

========== Modules (No Company Name) ==========

MOD - [2014.04.26 23:01:41 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.04.24 02:33:13 | 000,390,472 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\34.0.1847.131\ppgooglenaclpluginchrome.dll
MOD - [2014.04.24 02:33:10 | 004,081,480 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\34.0.1847.131\pdf.dll
MOD - [2014.04.24 02:33:03 | 001,647,432 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll
MOD - [2014.04.24 02:33:01 | 000,065,352 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll
MOD - [2014.02.15 12:50:05 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\5c157466d360a10b2c97e94b41ddc588\System.Management.ni.dll
MOD - [2014.02.15 12:49:46 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8cd995f00848816e3ec49dc326e3d49b\System.ServiceProcess.ni.dll
MOD - [2014.02.15 12:49:32 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\fd639d8d8def70deaf3b26cd073577f3\System.Runtime.Remoting.ni.dll
MOD - [2014.02.15 12:49:20 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b6e70acd99dc22e29b7fc8f9ac340c4\System.Configuration.ni.dll
MOD - [2014.02.15 01:51:03 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7faf645dc46781225cb722edf9e1e738\System.Xml.ni.dll
MOD - [2014.02.15 01:49:31 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\4b0455ae94e3cecca4bb3ba8c96828c9\System.ni.dll
MOD - [2014.02.15 01:49:19 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll
MOD - [2014.02.10 13:44:24 | 004,592,128 | ---- | M] () -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libGLESv2.dll
MOD - [2014.02.10 13:44:24 | 000,112,128 | ---- | M] () -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libEGL.dll
MOD - [2011.03.16 18:56:35 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
MOD - [2011.03.16 18:56:33 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
MOD - [2011.03.16 18:56:31 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.03.30 11:24:38 | 001,571,817 | ---- | M] () -- C:\Program Files\Tunngle\libeay32.dll
MOD - [2004.02.26 02:31:24 | 000,176,235 | ---- | M] () -- C:\WINDOWS\system32\Primomonnt.dll
MOD - [2001.10.28 18:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll

========== Services (SafeList) ==========

SRV - [2013.02.09 00:45:50 | 000,008,704 | ---- | M] (Hi-Rez Studios) [Auto | Running] -- C:\Program Files\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)
SRV - [2010.02.13 03:49:04 | 000,685,816 | ---- | M] (Tunngle.net GmbH) [Auto | Running] -- C:\Program Files\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Classic\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\TEST1\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a74xtqdo)
DRV - [2014.04.26 23:01:42 | 000,776,976 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014.04.26 23:01:42 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.04.26 23:01:42 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.04.26 23:01:42 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2010.10.16 17:37:33 | 000,165,376 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010.10.16 17:37:32 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010.04.07 08:59:23 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009.11.25 01:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.25 01:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.25 01:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.11.16 18:33:38 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (npf)
DRV - [2009.09.16 08:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tap0901t.sys -- (tap0901t)
DRV - [2009.03.18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.07.10 02:49:14 | 000,242,712 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0102.sys -- (RsFx0102)
DRV - [2007.06.29 15:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007.03.27 04:21:06 | 004,395,008 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007.03.15 15:12:02 | 000,038,656 | R--- | M] (Attansic Technology corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atl01_xp.sys -- (AtcL001)
DRV - [2005.06.27 09:14:35 | 000,066,560 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfvfs02.sys -- (sfvfs02)
DRV - [2005.05.17 14:48:21 | 000,050,176 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.05.16 15:23:38 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004.08.14 03:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1292428093-308236825-725345543-1010\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1292428093-308236825-725345543-1010\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

[2012.06.15 20:50:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: VyhledĂˇvĂˇnĂ Google = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2018.95_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.2.15747.10003_0\
CHR - Extension: PenÄ›Ĺľenka Google = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.04.28 09:02:46 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-1292428093-308236825-725345543-1010..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKLM..\RunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\35861c74-43b7-4067-8b0d-ccc8bd43a552.exe (AVAST Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in Důvěryhodné servery)
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://www.facebook.com/fbplugin/win32/ ... 5574324875 (Reg Error: Key error.)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 6177409987 (MUWebControl Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.40.2)
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/stati ... 0.66.2.cab (Battlefield Play4Free Updater)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.40.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F2DEC7AD-45E7-49CD-A8B7-5CAE9BD40E0D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - frapsvid.dll File not found
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.04.27 19:41:38 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\System32\sqlite3.dll
[2014.04.27 19:41:01 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.04.27 19:09:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)
[2014.04.27 19:09:46 | 000,107,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014.04.27 19:08:47 | 000,052,312 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys
[2014.04.27 19:08:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Plocha\mbar
[2014.04.27 19:02:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Dokumenty\Downloads
[2014.04.27 10:26:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\PCHealth
[2014.04.26 23:31:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Temp
[2014.04.26 23:21:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\Adobe
[2014.04.26 23:21:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
[2014.04.26 23:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
[2014.04.26 23:05:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2014.04.26 23:01:51 | 000,776,976 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.04.26 23:01:41 | 000,043,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.04.26 22:56:27 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014.04.26 22:55:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2014.04.26 22:55:42 | 004,796,856 | ---- | C] (AVAST Software) -- C:\Documents and Settings\TEST1\Plocha\avast_free_antivirus_setup_online.exe
[2014.04.26 22:52:51 | 001,413,120 | ---- | C] (Option^Explicit Software Solutions) -- C:\Documents and Settings\TEST1\Plocha\winsockfix.exe
[2014.04.26 20:57:15 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014.04.26 20:30:11 | 000,000,000 | --SD | C] -- C:\Nombr
[2014.04.26 18:19:18 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2014.04.26 18:19:18 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2014.04.26 18:19:18 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2014.04.26 18:19:18 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2014.04.26 18:14:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\TEST1\Nabídka Start\Programy\Nástroje pro správu
[2014.04.26 18:14:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\TEST1\Dokumenty\Filmy
[2014.04.26 18:13:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2014.04.26 18:13:15 | 005,196,309 | R--- | C] (Swearware) -- C:\Documents and Settings\TEST1\Plocha\Nombr.exe
[2014.04.26 16:04:25 | 000,000,000 | ---D | C] -- C:\_OTM
[2014.04.26 16:03:21 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\TEST1\Plocha\OTM.exe
[2014.04.26 14:38:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Plocha\RK_Quarantine
[2014.04.26 14:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Sun
[2014.04.26 14:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\Sun
[2014.04.26 12:05:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\Malwarebytes
[2014.04.26 11:08:29 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.04.26 10:30:10 | 000,000,000 | ---D | C] -- C:\rsit
[2014.04.26 10:22:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\TEST1\PrivacIE
[2014.04.26 10:22:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Local Settings\Data aplikací\Google
[2014.04.26 10:22:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\Google
[2014.04.26 10:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz

========== Files - Modified Within 30 Days ==========

[2014.04.28 09:08:33 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.04.28 09:05:02 | 000,000,314 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.04.28 09:04:53 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2014.04.28 09:04:50 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2014.04.28 09:04:47 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.04.28 09:04:47 | 000,000,220 | ---- | M] () -- C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.04.28 09:04:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.04.28 09:03:15 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\Access.dat
[2014.04.28 09:02:46 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2014.04.27 21:50:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.04.27 21:37:07 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.04.27 19:09:46 | 000,107,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014.04.27 19:08:47 | 000,052,312 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys
[2014.04.26 23:05:46 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.04.26 23:05:20 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.04.26 23:01:42 | 000,776,976 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2014.04.26 23:01:42 | 000,180,632 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.04.26 23:01:42 | 000,049,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.04.26 23:01:42 | 000,024,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.04.26 23:01:41 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2014.04.26 22:54:04 | 004,796,856 | ---- | M] (AVAST Software) -- C:\Documents and Settings\TEST1\Plocha\avast_free_antivirus_setup_online.exe
[2014.04.26 22:52:02 | 001,413,120 | ---- | M] (Option^Explicit Software Solutions) -- C:\Documents and Settings\TEST1\Plocha\winsockfix.exe
[2014.04.26 20:24:25 | 000,000,828 | ---- | M] () -- C:\Documents and Settings\TEST1\Plocha\CFScript
[2014.04.26 19:47:56 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak
[2014.04.26 18:10:34 | 005,196,309 | R--- | M] (Swearware) -- C:\Documents and Settings\TEST1\Plocha\Nombr.exe
[2014.04.26 16:02:06 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\TEST1\Plocha\OTM.exe
[2014.04.26 14:37:06 | 003,972,608 | ---- | M] () -- C:\Documents and Settings\TEST1\Plocha\RogueKiller.exe
[2014.04.26 09:56:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.04.23 01:59:30 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2014.04.21 21:47:21 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2014.04.11 08:00:55 | 000,571,142 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014.04.11 08:00:55 | 000,566,390 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2014.04.11 08:00:55 | 000,128,972 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2014.04.11 08:00:55 | 000,113,886 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014.04.09 21:48:03 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2014.04.08 15:28:46 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.03.31 20:17:05 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat

========== Files Created - No Company Name ==========

[2014.04.28 09:08:33 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.04.26 23:05:46 | 000,001,733 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2014.04.26 23:05:21 | 000,000,314 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.04.26 23:05:19 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.04.26 23:01:52 | 000,180,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2014.04.26 23:01:50 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.04.26 23:01:50 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014.04.26 20:23:28 | 000,000,828 | ---- | C] () -- C:\Documents and Settings\TEST1\Plocha\CFScript
[2014.04.26 18:19:18 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2014.04.26 18:19:18 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2014.04.26 18:19:18 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2014.04.26 18:19:18 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2014.04.26 18:19:18 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2014.04.26 14:38:02 | 003,972,608 | ---- | C] () -- C:\Documents and Settings\TEST1\Plocha\RogueKiller.exe
[2013.11.25 10:01:36 | 000,000,060 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2011.10.15 16:51:09 | 000,000,025 | ---- | C] () -- C:\Program Files\popcinfot.dat
[2011.10.03 19:32:14 | 000,000,032 | R--- | C] () -- C:\Documents and Settings\All Users\hash.dat
[2010.11.27 15:49:27 | 010,556,117 | ---- | C] () -- C:\Program Files\173.rar

========== ZeroAccess Check ==========

[2010.02.05 22:49:30 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 09:51:56 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 09:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014.04.26 22:55:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2014.01.20 18:30:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2010.04.07 08:58:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.12.23 10:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\F4
[2010.11.27 15:31:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Farm Frenzy
[2012.07.14 09:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Hi-Rez Studios
[2010.01.09 13:55:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\id Software
[2013.04.02 20:17:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2014.04.25 23:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2011.10.14 17:47:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCap Games
[2011.07.23 21:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Stardock
[2012.03.07 18:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2011.03.04 19:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tunngle
[2013.06.17 16:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2011.02.26 19:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Softland
[2013.12.07 11:35:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\.minecraft
[2014.04.27 10:15:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\AVAST Software
[2014.01.31 14:14:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Battle.net
[2010.08.08 16:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\BSplayer
[2010.05.15 21:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\BSplayer Pro
[2011.02.04 11:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\CreeperWorld
[2011.02.04 11:36:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\CreeperWorldDEMO.BA6B793AB2C9FDD744493F22666C1F8DFA806A5E.1
[2010.04.07 09:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\DAEMON Tools Lite
[2011.08.04 18:21:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Dwarfs
[2013.04.19 10:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\e-academy Inc
[2010.04.05 15:10:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Facebook
[2013.04.02 16:52:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess
[2013.10.07 19:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\ICQ
[2010.01.09 13:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\id Software
[2013.11.06 13:13:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Kalydo
[2010.08.18 15:00:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\LolClient
[2012.05.24 16:22:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\LolClient2
[2012.06.16 10:41:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Mount&Blade
[2012.06.15 19:45:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Mount&Blade Warband
[2012.06.15 19:45:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Mount&Blade With Fire and Sword
[2011.11.12 20:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Mumble
[2013.04.02 20:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\My Games
[2011.02.19 19:59:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Nicalis
[2010.11.13 11:57:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Opera
[2012.11.28 22:50:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Orbit
[2013.02.04 20:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Origin
[2013.06.17 16:14:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\PunkBuster
[2014.04.26 10:28:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Seznam.cz
[2011.02.13 22:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Smart PDF Creator
[2013.10.12 21:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Soldat
[2013.02.04 20:04:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Sony Online Entertainment
[2010.08.10 13:08:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\SPORE
[2013.12.24 01:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\TS3Client
[2012.03.27 18:42:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\TunkDesign Inc
[2011.10.07 19:34:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Tunngle
[2013.09.12 19:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Ubisoft
[2011.12.25 00:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Unity
[2013.11.20 21:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\uTorrent
[2013.05.27 18:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\wargaming.net
[2011.12.06 11:46:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Data aplikací\Zoner
[2014.04.26 23:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
[2014.04.26 14:35:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.12.29 13:29:33 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.12.29 13:35:11 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2010.04.27 15:30:17 | 000,000,260 | ---- | C] () -- C:\WINDOWS\Tasks\WGASetup.job
[2010.05.16 13:55:16 | 000,000,936 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2010.05.16 13:55:17 | 000,000,940 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2012.06.10 18:10:03 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2014.03.28 14:57:39 | 000,000,214 | ---- | C] () -- C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.03.28 14:57:40 | 000,000,220 | ---- | C] () -- C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
[2014.04.26 23:05:21 | 000,000,314 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job

< >

< MD5 for: AGP440.SYS >
[2004.08.18 06:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\erdnt\cache\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 06:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\erdnt\cache\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 06:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2004.08.18 06:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
[2004.08.03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 06:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.18 06:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2011.05.10 00:48:16 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2004.08.18 06:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 06:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\erdnt\cache\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\erdnt\cache\eventlog.dll
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 06:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\erdnt\cache\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 06:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 06:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 06:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.18 06:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2004.08.18 06:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.18 06:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\erdnt\cache\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\NDIS.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\erdnt\cache\ndis.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 06:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.18 06:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\erdnt\cache\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.18 06:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\erdnt\cache\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 06:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\erdnt\cache\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 06:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\erdnt\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 06:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\erdnt\cache\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 06:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 06:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\erdnt\cache\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 06:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\erdnt\cache\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\CSC\*.tmp files -> C:\WINDOWS\CSC\*.tmp -> ]
[412 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >
[2012.07.14 09:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Hi-Rez Studios

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.04.26 23:21:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Adobe
[2014.04.26 23:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
[2014.04.26 10:22:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Google
[2013.05.15 17:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Identities
[2010.08.17 20:32:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Macromedia
[2014.04.26 12:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Malwarebytes
[2014.04.26 23:05:39 | 000,000,000 | --SD | M] -- C:\Documents and Settings\TEST1\Data aplikací\Microsoft
[2014.04.26 14:35:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz
[2014.04.26 14:35:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\Sun
[2013.05.15 17:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEST1\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2012.09.13 15:24:48 | 001,009,288 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\szninstall.exe
[2012.09.14 14:06:28 | 002,515,592 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\sznsetup.exe
[2013.02.13 16:16:08 | 000,942,080 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\bin\chromeUpdatePref.exe
[2013.01.22 14:55:12 | 000,456,696 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\bin\szndesktop.exe
[2013.01.22 14:54:46 | 000,092,152 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\bin\wszndesktop.exe
[2013.02.04 15:53:30 | 000,055,808 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\data\ffinstall\ffkill.exe
[2011.12.19 10:04:28 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\data\ffinstall\reg.exe
[2013.02.04 15:53:34 | 000,077,824 | ---- | M] () -- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz\data\ffinstall\regctrl.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.04.07 08:59:23 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2009.12.29 13:43:24 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.12.29 13:43:24 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.12.29 13:43:24 | 000,487,424 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >
[2014.04.26 23:01:42 | 000,024,184 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswHwid.sys
[2014.04.26 23:01:42 | 000,049,944 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswRvrt.sys
[2014.04.26 23:01:42 | 000,776,976 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSnx.sys
[2014.04.26 23:01:42 | 000,180,632 | ---- | M] () -- C:\WINDOWS\system32\drivers\aswVmm.sys
[2014.04.27 19:08:47 | 000,052,312 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamchameleon.sys
[2014.04.27 19:09:46 | 000,107,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys

< %systemroot%\system32\*.* /3 >
[2014.04.28 09:03:15 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\Access.dat
[2014.04.28 09:04:50 | 000,272,291 | ---- | M] () -- C:\WINDOWS\system32\NvApps.xml
[2014.04.26 09:56:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" -- [2006.11.16 20:04:20 | 000,139,264 | ---- | M] (Nero AG)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.04.28 09:08:33 | 000,000,512 | ---- | M] () MD5=EA4DDC648BCF3FD43FCEB96B92F62C9B -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2010.07.06 12:39:40 | 000,005,627 | ---- | M] () -- \Documents and Settings\test\Data aplikací\uTorrent\AC II SKIDROW Crack.rar.torrent
[2011.11.14 19:28:21 | 000,016,701 | ---- | M] () -- \Documents and Settings\test\Data aplikací\uTorrent\MB_Warband_Upgrade 1143+Crack.torrent
[2011.12.22 17:18:20 | 000,012,702 | ---- | M] () -- \Documents and Settings\test\Data aplikací\uTorrent\Mount.and.Blade.Warband Version 1.134+Crack and Multiplayer.torrent
[2011.03.04 18:08:34 | 000,962,846 | ---- | M] () -- \Documents and Settings\test\Dokumenty\Downloads\crack-the-age-of-kings.rar
[2010.11.08 16:07:49 | 010,306,590 | ---- | M] () -- \Documents and Settings\test\Dokumenty\Downloads\Mount and blade Warband multiplayer crack 1.131Keler500.rar
[2010.07.01 10:56:12 | 000,005,039 | ---- | M] () -- \Documents and Settings\test\Dokumenty\Downloads\Assassins.Creed.2.Multi.9.CloneDVD.PC.DVD9\Crack\CrackONLY.nfo
[2010.07.19 11:55:25 | 000,049,376 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\wow server\8763\Extraktory\Buildings\Shadowmoon_Wall_Crack.wmo
[2003.12.05 14:52:40 | 000,000,796 | ---- | M] () -- \Documents and Settings\test\Plocha\GTA-SanAndreas\data\Decision\Craig\crack1.ped
[2011.06.30 10:16:18 | 003,660,377 | ---- | M] () -- \Documents and Settings\test\Plocha\rar\mount-and-blade-warband-multiplayer-crack-1-134keler500.rar
[1999.04.05 12:19:22 | 000,001,056 | ---- | M] () -- \Program Files\3DO\Heroes 3 Complete\CRACK.EXE
[2013.02.06 19:35:14 | 065,406,980 | ---- | M] () -- \Program Files\Mount&Blade Warband\Mount-and-blade-Warband-multiplayer-crack-1.125-Keler500.rar.rar
[2009.01.19 14:27:44 | 000,083,645 | ---- | M] () -- \Program Files\Mount&Blade Warband\Sounds\Fire_Small_Crackle_Slick_op.ogg
[2011.05.01 11:05:09 | 000,076,652 | ---- | M] () -- \Program Files\Steam\SteamApps\common\magicka\Content\Levels\Textures\Surface\Nature\Ground\dirt01_cracked_0.xnb
[2011.05.01 11:10:28 | 000,034,846 | ---- | M] () -- \Program Files\Steam\SteamApps\common\magicka\Content\Levels\Textures\Surface\Nature\Ground\dirt01_cracked_NRM_0.xnb
[2011.05.01 11:20:38 | 000,018,032 | ---- | M] () -- \Program Files\Steam\SteamApps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\wall_cracked01_0.xnb
[2011.05.01 11:54:44 | 000,008,364 | ---- | M] () -- \Program Files\Steam\SteamApps\common\magicka\Content\Levels\Textures\Surface\Structure\Stone\wall_cracked_NRM_0.xnb
[2013.03.23 00:35:13 | 000,083,645 | ---- | M] () -- \Program Files\Steam\SteamApps\common\MountBlade Warband\Sounds\Fire_Small_Crackle_Slick_op.ogg
[2011.10.03 19:31:25 | 000,011,030 | ---- | M] () -- \Program Files\Steam\SteamApps\common\spiral knights\rsrc\world\prop\castle_fire\spritewell\decal_cracks.png
[2011.10.03 19:31:41 | 000,013,768 | ---- | M] () -- \Program Files\Steam\SteamApps\common\spiral knights\rsrc\world\prop\graveyard\gravestone01_crack.png
[2011.10.03 19:31:31 | 000,001,416 | ---- | M] () -- \Program Files\Steam\SteamApps\common\spiral knights\rsrc\world\prop\graveyard\gravestone02_crack.png
[2011.10.03 19:31:42 | 000,002,579 | ---- | M] () -- \Program Files\Steam\SteamApps\common\spiral knights\rsrc\world\prop\graveyard\gravestone03_crack.png
[2012.11.15 02:17:20 | 000,072,262 | ---- | M] () -- \Soldat\maps\CrackedBoot.pms
[2011.03.08 23:27:10 | 000,000,423 | ---- | M] () -- \Soldat\scenery-gfx\m_crack2-sk.png
[2011.03.08 23:27:10 | 000,000,670 | ---- | M] () -- \Soldat\scenery-gfx\m_crack3-sk.png
[2011.03.08 23:27:10 | 000,017,264 | ---- | M] () -- \Soldat\sfx\bonecrack.wav
[2011.03.08 23:27:10 | 000,021,094 | ---- | M] () -- \Soldat\sfx\firecrack.wav

< *keygen* /s >
[2009.06.17 11:44:46 | 000,000,779 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\AnubisKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,791 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\BlowfishKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,773 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\Cast5KeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,943 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\DESKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,779 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\KhazadKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,791 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\RijndaelKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,001,586 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\SecretKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,785 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\SerpentKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,779 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\SquareKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,797 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\TripleDESKeyGeneratorImpl.h
[2009.06.17 11:44:46 | 000,000,785 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\javax\crypto\jce\key\TwofishKeyGeneratorImpl.h
[2009.06.17 11:45:58 | 000,000,991 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\security\spec\RSAKeyGenParameterSpec.h
[2009.06.17 11:44:48 | 000,001,838 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\javax\crypto\KeyGenerator.h
[2009.06.17 11:44:48 | 000,001,032 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\javax\crypto\KeyGeneratorSpi.h
[2011.03.30 07:18:50 | 000,002,951 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\html\HTMLKeygenElement.cpp
[2011.03.30 07:18:50 | 000,001,667 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\html\HTMLKeygenElement.h
[2011.03.30 07:18:54 | 000,002,141 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\platform\SSLKeyGenerator.h
[2011.03.30 07:18:54 | 000,002,287 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\platform\mac\SSLKeyGeneratorMac.mm
[2011.03.30 07:18:54 | 000,001,663 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\platform\mac\WebCoreKeyGenerator.h
[2011.03.30 07:18:54 | 000,002,134 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\platform\mac\WebCoreKeyGenerator.m

< *AntiWPA* /s >

< *loader* /s >
[2011.06.01 17:58:22 | 000,000,340 | ---- | M] () -- \Documents and Settings\test\Data aplikací\.minecraft\ModLoader.txt
[2011.06.01 17:41:01 | 000,000,105 | ---- | M] () -- \Documents and Settings\test\Data aplikací\.minecraft\config\ModLoader.cfg
[2010.02.02 00:04:44 | 000,847,040 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Facebook\axfbootloader.dll
[2013.10.08 09:51:04 | 002,364,280 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Kalydo\KalydoPlayer\bin2\kalydoloader.exe
[2012.06.07 21:16:04 | 000,010,145 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules\ExternalLibraryLoader.jsm
[2013.04.15 13:32:10 | 000,060,416 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\bin\24152libfoxloader-x64.dll
[2013.03.29 13:37:34 | 000,059,384 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\bin\32041libfoxloader.dll
[2013.05.27 17:52:20 | 000,000,165 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.02.19 12:07:28 | 000,030,608 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013.03.25 16:27:20 | 000,000,665 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013.03.25 16:27:26 | 000,000,117 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2013.01.11 01:14:11 | 000,805,272 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\ApplicationDownloaderService.exe
[2012.10.27 04:42:33 | 000,294,400 | ---- | M] () -- \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe
[2010.05.30 11:11:06 | 000,256,792 | ---- | M] () -- \Documents and Settings\test\Dokumenty\SoftonicDownloader66761.exe
[2010.06.09 12:23:35 | 000,002,472 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\game\Grids\GridLoader.h
[2010.06.27 12:15:40 | 000,010,073 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\game\Grids\ObjectGridLoader.cpp
[2010.06.09 12:23:35 | 000,003,806 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\game\Grids\ObjectGridLoader.h
[2010.06.30 18:57:10 | 000,034,433 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\game\Scripting\ScriptLoader.cpp
[2010.06.06 23:41:47 | 000,000,291 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\game\Scripting\ScriptLoader.h
[2010.06.06 23:41:47 | 000,007,088 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\shared\DataStores\DBCFileLoader.cpp
[2010.06.08 04:35:14 | 000,004,503 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\src\server\shared\DataStores\DBCFileLoader.h
[2010.07.19 14:48:36 | 000,655,716 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\win\VC90\game__Win32_Release\ObjectGridLoader.obj
[2010.07.19 14:58:00 | 000,280,076 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\win\VC90\game__Win32_Release\ScriptLoader.obj
[2010.07.19 14:48:01 | 000,029,251 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\win\VC90\shared__Win32_Release\DBCFileLoader.obj
[2009.06.29 10:27:48 | 000,006,786 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\wow server\armory\includes\pear\PEAR\Autoloader.php
[2009.06.29 10:27:48 | 000,066,788 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\wow server\armory\includes\pear\PEAR\Downloader.php
[2013.12.24 00:29:23 | 000,012,811 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Overwolf\InstallerCache\preloader_3337.gif
[2014.01.28 20:35:56 | 000,072,638 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Skype\Apps\login\images\loader.gif
[2014.01.28 20:35:56 | 000,003,032 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Skype\Apps\login\images\loader.png
[2014.01.28 20:35:56 | 000,006,012 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.01.28 20:35:56 | 000,021,956 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.01.28 20:35:56 | 000,009,772 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Skype\Apps\login\images\retina\loader@2x.png
[2011.02.18 16:56:45 | 000,344,848 | ---- | M] () -- \Documents and Settings\test\Plocha\Downloader_4Story_CZ_3.4.53.exe
[2012.01.20 18:43:03 | 000,339,620 | ---- | M] () -- \Documents and Settings\test\Plocha\GTA-SanAndreas\Downloader_Nostale_CZ.exe
[2011.06.01 17:58:22 | 000,000,340 | ---- | M] () -- \Documents and Settings\test\Plocha\GTA-SanAndreas\Minecraft 1.6.6\.minecraft\ModLoader.txt
[2011.06.01 17:41:01 | 000,000,105 | ---- | M] () -- \Documents and Settings\test\Plocha\GTA-SanAndreas\Minecraft 1.6.6\.minecraft\config\ModLoader.cfg
[2011.08.08 20:35:41 | 000,001,763 | ---- | M] () -- \Documents and Settings\test\Plocha\Kuba\odpad\MP3 Downloader.lnk
[2012.09.13 15:45:58 | 000,058,424 | ---- | M] () -- \Documents and Settings\TEST1\Data aplikací\Seznam.cz\bin\libfoxloader.dll
[2012.08.07 14:39:12 | 000,000,165 | ---- | M] () -- \Documents and Settings\TEST1\Data aplikací\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2012.08.13 19:05:28 | 000,000,235 | ---- | M] () -- \Documents and Settings\TEST1\Data aplikací\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012.08.13 19:05:26 | 000,000,130 | ---- | M] () -- \Documents and Settings\TEST1\Data aplikací\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2011.05.26 17:47:50 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2013.09.04 20:10:18 | 000,002,221 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\graphicspresetsloader.pyc
[2013.09.04 20:10:18 | 000,007,015 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\guicolorsloader.pyc
[2013.09.04 20:10:18 | 000,003,974 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\guisoundsloader.pyc
[2013.09.04 20:10:18 | 000,006,629 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\logindataloader.pyc
[2013.09.04 20:10:18 | 000,002,773 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\windowsstoreddataloader.pyc
[2013.09.04 20:10:18 | 000,001,504 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\Scaleform\framework\entities\abstract\loadermanagermeta.pyc
[2013.09.04 20:10:18 | 000,006,493 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\Scaleform\framework\managers\loaders.pyc
[2013.02.26 18:36:29 | 000,003,668 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\helpers\rssdownloader.pyc
[2013.09.04 20:10:18 | 000,006,907 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\loader.pyc
[2012.12.07 11:08:57 | 000,005,363 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\tutorialloader.pyc
[2009.01.16 01:26:10 | 000,009,068 | ---- | M] () -- \lazarus\debugger\fpdebug\dbgloader.pp
[2008.02.02 16:48:09 | 000,003,206 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\gtk2\src\gtk+\gdk-pixbuf\gdk-pixbuf-loader.inc
[2008.01.05 20:27:57 | 000,016,875 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\winunits-jedi\src\ModuleLoader.pas
[2014.04.26 23:01:39 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2006.11.09 23:31:32 | 000,163,840 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2011.06.26 09:38:21 | 000,000,147 | ---- | M] () -- \Program Files\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2001.01.16 07:55:36 | 000,053,248 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\COLOADER.DLL
[2001.01.16 05:22:34 | 000,002,560 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\COLOADER.TLB
[2008.07.30 10:06:58 | 000,072,192 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.dll
[2008.07.29 03:43:16 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader80.tlb
[2010.12.14 11:54:22 | 000,166,400 | ---- | M] () -- \Program Files\Fotolab\Fotolab Fotosvet 4\CWImageLoader0.dll
[2010.04.28 13:32:14 | 000,048,315 | ---- | M] () -- \Program Files\Full Tilt Poker.Org\Graphics\Cashier\WebDialog\cashier_loader.mng
[2010.04.28 13:32:16 | 000,015,895 | ---- | M] () -- \Program Files\Full Tilt Poker.Org\Graphics\Lobby\Backgrounds\LoaderChip.gif
[2011.05.10 11:36:17 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.05.10 11:36:17 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.05.10 11:36:17 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.05.10 11:37:03 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.05.10 11:37:05 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.05.10 11:37:05 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2009.08.19 18:25:00 | 000,002,001 | ---- | M] () -- \Program Files\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\assets\images\SpinLoader.png
[2010.08.18 14:57:18 | 000,000,404 | ---- | M] () -- \Program Files\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\assets\storeImages\layout\small_loader.gif
[2013.08.17 08:19:48 | 000,001,415 | ---- | M] () -- \Program Files\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\cfct\assets\FeaturedContentLoaderAssets.swf
[2008.07.11 02:28:06 | 000,019,992 | ---- | M] () -- \Program Files\Microsoft SQL Server\100\Tools\Binn\SqlResourceLoader.dll
[2008.07.11 02:28:06 | 000,019,992 | ---- | M] () -- \Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SqlResourceLoader.dll
[2011.10.13 17:21:58 | 000,005,987 | ---- | M] () -- \Program Files\Microsoft\BingBar\scripts\io\downloader.js
[2009.12.24 14:04:21 | 002,335,304 | ---- | M] () -- \Program Files\MSN Gaming Zone\Wrld of Warcraft\BackgroundDownloader.exe
[2009.12.24 15:26:17 | 002,199,272 | ---- | M] () -- \Program Files\MSN Gaming Zone\Wrld of Warcraft\WoW-3.2.0-enGB-downloader.exe
[2009.12.24 18:44:33 | 002,391,456 | ---- | M] () -- \Program Files\MSN Gaming Zone\Wrld of Warcraft\WoW-3.2.0.10192-to-3.3.0.10958-enGB-downloader.exe
[2009.12.24 21:44:38 | 002,400,032 | ---- | M] () -- \Program Files\MSN Gaming Zone\Wrld of Warcraft\WoW-3.2.2.10505-to-3.3.0.10958-enGB-downloader.exe
[2009.12.24 21:44:45 | 000,002,974 | ---- | M] () -- \Program Files\MSN Gaming Zone\Wrld of Warcraft\Logs\Downloader.log
[2010.01.29 07:43:52 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.02.19 12:07:28 | 000,030,608 | ---- | M] () -- \Program Files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013.10.23 22:07:40 | 000,007,825 | ---- | M] () -- \Program Files\Steam\remoteui\static\libs\images\ajax-loader.gif
[2012.07.13 15:27:34 | 000,064,280 | ---- | M] () -- \Program Files\Steam\SteamApps\common\tribes\Binaries\Win32\PhysXLoader.dll
[2013.10.20 17:03:02 | 000,000,320 | ---- | M] () -- \Program Files\The Mighty Quest For Epic Loot\GameData\Data\UI\Css\modules\shared\preLoader.css
[2013.10.20 17:03:04 | 000,001,215 | ---- | M] () -- \Program Files\The Mighty Quest For Epic Loot\GameData\Data\UI\Js\hyperquest.ui.preLoader.js
[2013.06.18 17:13:34 | 000,329,056 | ---- | M] () -- \Program Files\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2010.02.10 18:10:14 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2011.08.17 18:02:13 | 003,734,648 | ---- | M] () -- \Program Files\World of Warcraft\BackgroundDownloader.exe
[2010.07.14 10:13:34 | 002,199,272 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe
[2010.07.15 07:57:30 | 002,391,456 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.3.0.10958-enGB-downloader.exe
[2010.03.15 18:24:39 | 002,400,032 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.2.2.10505-to-3.3.0.10958-enGB-downloader.exe
[2010.07.15 08:13:07 | 002,336,112 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.3.0.10958-to-3.3.0.11159-enGB-downloader.exe
[2010.07.15 08:13:32 | 002,350,144 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.3.0.11159-to-3.3.2.11403-enGB-downloader.exe
[2010.07.15 08:14:58 | 002,654,392 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.3.2.11403-to-3.3.3.11685-enGB-downloader.exe
[2010.07.15 08:17:42 | 002,640,192 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.3.3.11685-to-3.3.3.11723-enGB-downloader.exe
[2010.08.23 16:58:23 | 002,711,048 | ---- | M] () -- \Program Files\World of Warcraft\WoW-3.3.3.11723-to-3.3.5.12213-enGB-downloader.exe
[2011.02.05 16:34:45 | 002,070,207 | ---- | M] () -- \Program Files\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2010.03.17 17:21:20 | 000,017,717 | ---- | M] () -- \Program Files\World of Warcraft\Interface.20100301-150639\Logs\Downloader.log
[2011.06.26 09:38:38 | 000,161,793 | ---- | M] () -- \Program Files\World of Warcraft\Logs\Downloader.log
[2011.08.17 18:01:36 | 005,127,168 | ---- | M] () -- \Program Files\World of Warcraft\Temp\wow-4.2.0.2506-enUS-tools-downloader.exe
[2011.09.08 19:17:19 | 005,127,144 | ---- | M] () -- \Program Files\World of Warcraft\Temp\wow-4.2.0.2552-enUS-tools-downloader.exe
[2012.08.20 16:35:16 | 006,399,096 | ---- | M] () -- \Program Files\World of Warcraft\Temp\wow-4.2.1.2736-enUS-tools-downloader.exe
[2013.09.02 14:41:14 | 005,128,696 | ---- | M] () -- \Program Files\World of Warcraft\Temp\wow-4.2.1.2756-enUS-tools-downloader.exe
[2013.06.17 17:07:22 | 000,002,687 | ---- | M] () -- \Program Files\World of Warcraft\Temp\Logs\Downloader.log
[2014.03.01 02:28:43 | 000,013,042 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\ControlSettingsLoader.pyc
[2014.03.01 02:28:43 | 000,001,471 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\GameSettingsLoader.pyc
[2014.03.01 02:28:43 | 000,002,401 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\GraphicSettingsLoader.pyc
[2014.03.01 02:28:43 | 000,004,780 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\HUDSettingsLoader.pyc
[2014.03.01 02:28:43 | 000,003,166 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\RootSettingsLoader.pyc
[2014.03.01 02:28:43 | 000,001,226 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\SignalsLoader.pyc
[2014.03.01 02:28:43 | 000,002,513 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\gui\Scaleform\GameOptions\loaders\SoundSettingsLoader.pyc
[2013.05.16 19:39:55 | 000,003,626 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\Helpers\ModelLoader.pyc
[2014.03.01 02:28:44 | 000,001,851 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\DummyDeviceLoader.pyc
[2014.03.01 02:28:44 | 000,001,310 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\GamepadLoader.pyc
[2013.05.16 19:39:55 | 000,001,245 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\GamepadProfileLoader.pyc
[2014.03.01 02:28:44 | 000,003,883 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\JoystickLoader.pyc
[2014.03.01 02:28:44 | 000,008,859 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\KeyMapingLoader.pyc
[2014.03.01 02:28:44 | 000,003,798 | ---- | M] () -- \Program Files\World_of_Warplanes\World_of_Warplanes\res\scripts\client\input\ProfileLoader\MouseLoader.pyc
[1996.06.14 14:20:16 | 000,064,824 | ---- | M] () -- \Program Files\z\LOADER.LBM
[2011.03.30 07:18:34 | 000,012,032 | ---- | M] () -- \Qt\4.7.3\doc\html\declarative-threading-threadedlistmodel-dataloader-js.html
[2011.03.30 07:17:34 | 000,015,593 | ---- | M] () -- \Qt\4.7.3\doc\html\qdeclarativetypeloader-members.html
[2011.03.30 07:18:24 | 000,015,541 | ---- | M] () -- \Qt\4.7.3\doc\html\qdeclarativetypeloader.html
[2011.03.30 07:17:16 | 000,009,794 | ---- | M] () -- \Qt\4.7.3\doc\html\qml-fontloader-members.html
[2011.03.30 07:17:18 | 000,013,578 | ---- | M] () -- \Qt\4.7.3\doc\html\qml-fontloader.html
[2011.03.30 07:17:20 | 000,014,271 | ---- | M] () -- \Qt\4.7.3\doc\html\qml-loader-members.html
[2011.03.30 07:18:22 | 000,023,051 | ---- | M] () -- \Qt\4.7.3\doc\html\qml-loader.html
[2011.03.30 07:16:44 | 000,015,826 | ---- | M] () -- \Qt\4.7.3\doc\html\qpluginloader-members.html
[2011.03.30 07:17:04 | 000,026,671 | ---- | M] () -- \Qt\4.7.3\doc\html\qpluginloader.html
[2011.03.30 07:16:46 | 000,016,325 | ---- | M] () -- \Qt\4.7.3\doc\html\quiloader-members.html
[2011.03.30 07:16:46 | 000,027,908 | ---- | M] () -- \Qt\4.7.3\doc\html\quiloader.html
[2011.03.30 07:18:46 | 000,002,168 | ---- | M] () -- \Qt\4.7.3\doc\src\snippets\code\doc_src_qtuiloader.qdoc
[2011.03.30 07:18:44 | 000,002,370 | ---- | M] () -- \Qt\4.7.3\doc\src\snippets\declarative\loader\sizeloader.qml
[2011.03.30 07:18:46 | 000,000,114 | ---- | M] () -- \Qt\4.7.3\doc\src\snippets\quiloader\quiloader.pro
[2011.03.30 07:15:40 | 000,002,352 | ---- | M] () -- \Qt\4.7.3\examples\declarative\threading\threadedlistmodel\dataloader.js
[2011.03.30 07:16:14 | 000,000,318 | ---- | M] () -- \Qt\4.7.3\include\Qt\qpluginloader.h
[2011.03.30 07:15:46 | 000,000,028 | ---- | M] () -- \Qt\4.7.3\include\QtCore\QPluginLoader
[2011.03.30 07:15:50 | 000,000,053 | ---- | M] () -- \Qt\4.7.3\include\QtCore\qpluginloader.h
[2011.03.30 07:15:52 | 000,000,059 | ---- | M] () -- \Qt\4.7.3\include\QtCore\private\qfactoryloader_p.h
[2011.03.30 07:16:22 | 000,000,069 | ---- | M] () -- \Qt\4.7.3\include\QtDeclarative\private\qdeclarativefontloader_p.h
[2011.03.30 07:16:22 | 000,000,074 | ---- | M] () -- \Qt\4.7.3\include\QtDeclarative\private\qdeclarativeloader_p.h
[2011.03.30 07:16:22 | 000,000,076 | ---- | M] () -- \Qt\4.7.3\include\QtDeclarative\private\qdeclarativeloader_p_p.h
[2011.03.30 07:16:22 | 000,000,068 | ---- | M] () -- \Qt\4.7.3\include\QtDeclarative\private\qdeclarativetypeloader_p.h
[2011.03.30 07:15:46 | 000,000,066 | ---- | M] () -- \Qt\4.7.3\include\QtDesigner\private\iconloader_p.h
[2011.03.30 07:16:20 | 000,000,061 | ---- | M] () -- \Qt\4.7.3\include\QtGui\private\qcocoamenuloader_mac_p.h
[2011.03.30 07:16:20 | 000,000,051 | ---- | M] () -- \Qt\4.7.3\include\QtGui\private\qiconloader_p.h
[2011.03.30 07:15:42 | 000,000,024 | ---- | M] () -- \Qt\4.7.3\include\QtUiTools\QUiLoader
[2011.03.30 07:15:42 | 000,000,057 | ---- | M] () -- \Qt\4.7.3\include\QtUiTools\quiloader.h
[2011.03.30 07:15:42 | 000,000,062 | ---- | M] () -- \Qt\4.7.3\include\QtUiTools\private\quiloader_p.h
[2011.03.30 07:16:00 | 000,000,076 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qacceltreeresourceloader_p.h
[2011.03.30 07:16:02 | 000,000,067 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qdeviceresourceloader_p.h
[2011.03.30 07:16:00 | 000,000,070 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qexternalvariableloader_p.h
[2011.03.30 07:16:00 | 000,000,062 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qresourceloader_p.h
[2011.03.30 07:16:02 | 000,000,056 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\quriloader_p.h
[2011.03.30 07:16:00 | 000,000,061 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qvariableloader_p.h
[2009.06.17 11:45:48 | 000,000,834 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\classpath\jdwp\exception\InvalidClassLoaderException.h
[2009.06.17 11:45:50 | 000,000,726 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\classpath\jdwp\id\ClassLoaderId.h
[2009.06.17 11:45:12 | 000,001,058 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\classpath\jdwp\processor\ClassLoaderReferenceCommandSet.h
[2009.06.17 11:45:10 | 000,001,249 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\gcj\runtime\BootClassLoader.h
[2009.06.17 11:45:10 | 000,000,891 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\gcj\runtime\ExtensionClassLoader.h
[2009.06.17 11:45:10 | 000,000,718 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\gcj\runtime\HelperClassLoader.h
[2009.06.17 11:45:10 | 000,001,126 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\gcj\runtime\SharedLibLoader.h
[2009.06.17 11:45:10 | 000,000,926 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\gcj\runtime\SystemClassLoader.h
[2009.06.17 11:45:44 | 000,003,600 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\awt\font\opentype\truetype\GlyphLoader.h
[2009.06.17 11:44:38 | 000,000,898 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\io\ClassLoaderObjectInputStream.h
[2009.06.17 11:44:54 | 000,001,284 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\net\loader\FileURLLoader.h
[2009.06.17 11:44:54 | 000,001,674 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\net\loader\JarURLLoader.h
[2009.06.17 11:44:54 | 000,001,184 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\net\loader\RemoteURLLoader.h
[2009.06.17 11:44:54 | 000,001,796 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\net\loader\URLLoader.h
[2009.06.17 11:44:50 | 000,001,160 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\rmi\server\CombinedClassLoader.h
[2009.06.17 11:44:50 | 000,001,742 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\gnu\java\rmi\server\RMIClassLoaderImpl.h
[2009.06.17 11:44:20 | 000,004,844 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\lang\ClassLoader.h
[2009.06.17 11:44:20 | 000,002,309 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\lang\VMClassLoader.h
[2009.06.17 11:44:20 | 000,003,117 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\net\URLClassLoader.h
[2009.06.17 11:45:40 | 000,000,885 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\rmi\server\LoaderHandler.h
[2009.06.17 11:45:42 | 000,001,541 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\rmi\server\RMIClassLoader.h
[2009.06.17 11:45:42 | 000,001,002 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\rmi\server\RMIClassLoaderSpi.h
[2009.06.17 11:45:04 | 000,001,384 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\security\SecureClassLoader.h
[2009.06.17 11:44:50 | 000,001,370 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\util\ServiceLoader.h
[2009.06.17 11:44:24 | 000,000,725 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\javax\management\DefaultLoaderRepository.h
[2009.06.17 11:45:50 | 000,000,910 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\javax\management\loading\ClassLoaderRepository.h
[2011.03.30 07:18:58 | 000,017,958 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\freetype\src\autofit\afloader.c
[2011.03.30 07:18:58 | 000,002,477 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\freetype\src\autofit\afloader.h
[2011.03.30 07:18:50 | 000,002,305 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\html\HTMLImageLoader.cpp
[2011.03.30 07:18:50 | 000,001,354 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\html\HTMLImageLoader.h
[2011.03.30 07:18:48 | 000,016,847 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocLoader.cpp
[2011.03.30 07:18:48 | 000,004,644 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocLoader.h
[2011.03.30 07:18:48 | 000,023,647 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocumentLoader.cpp
[2011.03.30 07:18:48 | 000,013,685 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocumentLoader.h
[2011.03.30 07:18:48 | 000,014,664 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocumentThreadableLoader.cpp
[2011.03.30 07:18:48 | 000,004,770 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\DocumentThreadableLoader.h
[2011.03.30 07:18:48 | 000,156,315 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\FrameLoader.cpp
[2011.03.30 07:18:48 | 000,020,546 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\FrameLoader.h
[2011.03.30 07:18:48 | 000,014,037 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\FrameLoaderClient.h
[2011.03.30 07:18:48 | 000,004,365 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\FrameLoaderTypes.h
[2011.03.30 07:18:48 | 000,010,372 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ImageLoader.cpp
[2011.03.30 07:18:48 | 000,002,913 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ImageLoader.h
[2011.03.30 07:18:48 | 000,020,343 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\loader.cpp
[2011.03.30 07:18:48 | 000,004,442 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\loader.h
[2011.03.30 07:18:48 | 000,021,431 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\MainResourceLoader.cpp
[2011.03.30 07:18:48 | 000,004,444 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\MainResourceLoader.h
[2011.03.30 07:18:48 | 000,004,657 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\NetscapePlugInStreamLoader.cpp
[2011.03.30 07:18:48 | 000,003,083 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\NetscapePlugInStreamLoader.h
[2011.03.30 07:18:48 | 000,016,758 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ResourceLoader.cpp
[2011.03.30 07:18:48 | 000,007,048 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ResourceLoader.h
[2011.03.30 07:18:48 | 000,010,335 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\SubresourceLoader.cpp
[2011.03.30 07:18:48 | 000,003,225 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\SubresourceLoader.h
[2011.03.30 07:18:48 | 000,002,931 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\SubresourceLoaderClient.h
[2011.03.30 07:18:48 | 000,003,114 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ThreadableLoader.cpp
[2011.03.30 07:18:48 | 000,003,601 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ThreadableLoader.h
[2011.03.30 07:18:48 | 000,002,484 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ThreadableLoaderClient.h
[2011.03.30 07:18:48 | 000,003,936 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\ThreadableLoaderClientWrapper.h
[2011.03.30 07:18:48 | 000,011,460 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\WorkerThreadableLoader.cpp
[2011.03.30 07:18:48 | 000,006,923 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\WorkerThreadableLoader.h
[2011.03.30 07:18:48 | 000,007,084 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\icon\IconLoader.cpp
[2011.03.30 07:18:48 | 000,002,531 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\loader\icon\IconLoader.h
[2011.03.30 07:18:52 | 000,001,874 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\svg\SVGImageLoader.cpp
[2011.03.30 07:18:52 | 000,001,400 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\svg\SVGImageLoader.h
[2011.03.30 10:33:04 | 000,004,040 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\tmp\moc\debug_shared\moc_FrameLoaderClientQt.cpp
[2011.03.30 07:18:50 | 000,002,162 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\wml\WMLImageLoader.cpp
[2011.03.30 07:18:50 | 000,001,350 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\wml\WMLImageLoader.h
[2011.03.30 07:18:52 | 000,002,840 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\workers\WorkerLoaderProxy.h
[2011.03.30 07:18:52 | 000,005,044 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\workers\WorkerScriptLoader.cpp
[2011.03.30 07:18:52 | 000,003,296 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\workers\WorkerScriptLoader.h
[2011.03.30 07:18:52 | 000,002,051 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\workers\WorkerScriptLoaderClient.h
[2011.03.30 07:18:54 | 000,046,552 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebKit\qt\WebCoreSupport\FrameLoaderClientQt.cpp
[2011.03.30 07:18:54 | 000,011,296 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebKit\qt\WebCoreSupport\FrameLoaderClientQt.h
[2011.03.30 07:19:08 | 000,009,774 | ---- | M] () -- \Qt\4.7.3\src\corelib\plugin\qfactoryloader.cpp
[2011.03.30 07:19:08 | 000,003,079 | ---- | M] () -- \Qt\4.7.3\src\corelib\plugin\qfactoryloader_p.h
[2011.03.30 07:19:08 | 000,014,883 | ---- | M] () -- \Qt\4.7.3\src\corelib\plugin\qpluginloader.cpp
[2011.03.30 07:19:08 | 000,003,243 | ---- | M] () -- \Qt\4.7.3\src\corelib\plugin\qpluginloader.h
[2011.03.30 07:52:20 | 000,002,204 | ---- | M] () -- \Qt\4.7.3\src\corelib\tmp\moc\debug_shared\moc_qfactoryloader_p.cpp
[2011.03.30 07:52:20 | 000,003,883 | ---- | M] () -- \Qt\4.7.3\src\corelib\tmp\moc\debug_shared\moc_qpluginloader.cpp
[2011.03.30 07:19:08 | 000,018,889 | ---- | M] () -- \Qt\4.7.3\src\declarative\graphicsitems\qdeclarativeloader.cpp
[2011.03.30 07:19:08 | 000,003,924 | ---- | M] () -- \Qt\4.7.3\src\declarative\graphicsitems\qdeclarativeloader_p.h
[2011.03.30 07:19:08 | 000,003,158 | ---- | M] () -- \Qt\4.7.3\src\declarative\graphicsitems\qdeclarativeloader_p_p.h
[2011.03.30 07:19:08 | 000,033,722 | ---- | M] () -- \Qt\4.7.3\src\declarative\qml\qdeclarativetypeloader.cpp
[2011.03.30 07:19:08 | 000,009,657 | ---- | M] () -- \Qt\4.7.3\src\declarative\qml\qdeclarativetypeloader_p.h
[2011.03.30 09:21:00 | 000,005,170 | ---- | M] () -- \Qt\4.7.3\src\declarative\tmp\moc\debug_shared\moc_qdeclarativefontloader_p.cpp
[2011.03.30 09:17:18 | 000,006,008 | ---- | M] () -- \Qt\4.7.3\src\declarative\tmp\moc\debug_shared\moc_qdeclarativeloader_p.cpp
[2011.03.30 09:22:12 | 000,004,348 | ---- | M] () -- \Qt\4.7.3\src\declarative\tmp\moc\debug_shared\moc_qdeclarativetypeloader_p.cpp
[2011.03.30 09:16:14 | 000,003,183 | ---- | M] () -- \Qt\4.7.3\src\declarative\tmp\moc\debug_shared\qdeclarativefontloader.moc
[2011.03.30 07:19:08 | 000,010,523 | ---- | M] () -- \Qt\4.7.3\src\declarative\util\qdeclarativefontloader.cpp
[2011.03.30 07:19:10 | 000,003,246 | ---- | M] () -- \Qt\4.7.3\src\declarative\util\qdeclarativefontloader_p.h
[2011.03.30 07:19:04 | 000,018,529 | ---- | M] () -- \Qt\4.7.3\src\gui\image\qiconloader.cpp
[2011.03.30 07:19:04 | 000,006,148 | ---- | M] () -- \Qt\4.7.3\src\gui\image\qiconloader_p.h
[2011.03.30 07:19:04 | 000,008,771 | ---- | M] () -- \Qt\4.7.3\src\gui\kernel\qcocoamenuloader_mac.mm
[2011.03.30 07:19:04 | 000,003,619 | ---- | M] () -- \Qt\4.7.3\src\gui\kernel\qcocoamenuloader_mac_p.h
[2011.03.30 07:19:12 | 000,016,296 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\acceltree\qacceltreeresourceloader.cpp
[2011.03.30 07:19:12 | 000,007,991 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\acceltree\qacceltreeresourceloader_p.h
[2011.03.30 07:19:12 | 000,003,109 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qdeviceresourceloader_p.h
[2011.03.30 07:19:12 | 000,003,601 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\quriloader.cpp
[2011.03.30 07:19:12 | 000,003,132 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\quriloader_p.h
[2011.03.30 07:19:12 | 000,009,350 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qvariableloader.cpp
[2011.03.30 07:19:12 | 000,004,554 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qvariableloader_p.h
[2011.03.30 07:19:12 | 000,004,588 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\data\qresourceloader.cpp
[2011.03.30 07:19:12 | 000,016,780 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\data\qresourceloader_p.h
[2011.03.30 07:19:12 | 000,003,600 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qexternalvariableloader.cpp
[2011.03.30 07:19:12 | 000,006,149 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qexternalvariableloader_p.h
[2011.03.30 08:49:44 | 000,002,806 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\tmp\moc\debug_shared\moc_qacceltreeresourceloader_p.cpp
[2011.03.30 07:16:30 | 000,002,933 | ---- | M] () -- \Qt\4.7.3\tools\designer\src\lib\shared\iconloader.cpp
[2011.03.30 07:16:30 | 000,002,600 | ---- | M] () -- \Qt\4.7.3\tools\designer\src\lib\shared\iconloader_p.h
[2011.03.30 07:16:34 | 000,030,964 | ---- | M] () -- \Qt\4.7.3\tools\designer\src\uitools\quiloader.cpp
[2011.03.30 07:16:34 | 000,003,635 | ---- | M] () -- \Qt\4.7.3\tools\designer\src\uitools\quiloader.h
[2011.03.30 07:16:34 | 000,003,572 | ---- | M] () -- \Qt\4.7.3\tools\designer\src\uitools\quiloader_p.h
[2004.08.18 06:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2010.02.01 15:04:46 | 000,847,040 | ---- | M] () -- \WINDOWS\Downloaded Program Files\axfbootloader.dll
[2010.01.26 20:10:52 | 000,000,255 | ---- | M] () -- \WINDOWS\Downloaded Program Files\axfbootloader.inf
[2009.07.29 04:00:56 | 000,000,338 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.inf
[2009.07.29 22:21:24 | 003,540,488 | ---- | M] () -- \WINDOWS\Downloaded Program Files\PhotoUploader55.ocx
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 01:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 01:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1996.10.15 09:53:16 | 000,078,848 | ---- | M] () -- \WINDOWS\system32\INLOADER.DLL
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll

< *minodlogin* /s >

< *tnod* /s >
[2012.08.29 19:25:47 | 000,011,222 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08340000.pnd
[2012.06.07 19:45:22 | 001,341,354 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08980000.pnd
[2012.06.07 19:45:22 | 002,468,646 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08990000.pnd
[2012.06.07 19:45:22 | 001,341,354 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE089A0000.pnd
[2011.03.30 07:15:50 | 000,000,026 | ---- | M] () -- \Qt\4.7.3\include\QtCore\QLinkedListNode
[2011.03.30 07:16:04 | 000,000,064 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qabstractnodetest_p.h
[2011.03.30 07:16:02 | 000,000,071 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qcontextnodechecker_p.h
[2011.03.30 07:16:02 | 000,000,062 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qparentnodeaxis_p.h
[2011.03.30 07:16:04 | 000,000,067 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qtextnodeconstructor_p.h
[2011.03.30 07:16:04 | 000,000,060 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qxsltnodetest_p.h
[2011.03.30 07:18:52 | 000,002,374 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\DeleteFromTextNodeCommand.cpp
[2011.03.30 07:18:52 | 000,002,131 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\DeleteFromTextNodeCommand.h
[2011.03.30 07:18:52 | 000,002,221 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\InsertIntoTextNodeCommand.cpp
[2011.03.30 07:18:52 | 000,002,120 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\InsertIntoTextNodeCommand.h
[2011.03.30 07:18:52 | 000,002,397 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\InsertNodeBeforeCommand.cpp
[2011.03.30 07:18:52 | 000,002,121 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\InsertNodeBeforeCommand.h
[2011.03.30 07:18:52 | 000,002,595 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\JoinTextNodesCommand.cpp
[2011.03.30 07:18:52 | 000,002,027 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\JoinTextNodesCommand.h
[2011.03.30 07:18:52 | 000,002,181 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SetNodeAttributeCommand.cpp
[2011.03.30 07:18:52 | 000,002,225 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SetNodeAttributeCommand.h
[2011.03.30 07:18:52 | 000,003,339 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SplitTextNodeCommand.cpp
[2011.03.30 07:18:52 | 000,002,032 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SplitTextNodeCommand.h
[2011.03.30 07:18:52 | 000,002,466 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SplitTextNodeContainingElementCommand.cpp
[2011.03.30 07:18:52 | 000,002,084 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\editing\SplitTextNodeContainingElementCommand.h
[2011.03.30 07:19:12 | 000,002,856 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qparentnodeaxis.cpp
[2011.03.30 07:19:12 | 000,003,693 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qparentnodeaxis_p.h
[2011.03.30 07:19:12 | 000,003,932 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qtextnodeconstructor.cpp
[2011.03.30 07:19:12 | 000,003,536 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\expr\qtextnodeconstructor_p.h
[2011.03.30 07:19:12 | 000,002,824 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\functions\qcontextnodechecker.cpp
[2011.03.30 07:19:12 | 000,003,109 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\functions\qcontextnodechecker_p.h
[2011.03.30 07:19:12 | 000,002,740 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\type\qabstractnodetest.cpp
[2011.03.30 07:19:12 | 000,003,040 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\type\qabstractnodetest_p.h
[2011.03.30 07:19:12 | 000,002,672 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\type\qxsltnodetest.cpp
[2011.03.30 07:19:12 | 000,003,474 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\type\qxsltnodetest_p.h

< *AutoKMS* /s >

< *activator* /s >
[2009.06.17 11:45:14 | 000,000,710 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\rmi\activation\Activator.h

< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2008.04.14 08:51:10 | 000,064,256 | ---- | M] () -- \Documents and Settings\test\Data aplikací\FixZeroAccess\Archive\serial.sys
[2010.06.08 04:35:12 | 000,000,572 | ---- | M] () -- \Documents and Settings\test\Dokumenty\kuba\externals\g3dlite\G3D\serialize.h
[2014.04.10 11:12:43 | 000,022,528 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage
[2014.04.10 11:12:43 | 000,003,608 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage-journal
[2012.09.12 11:44:49 | 000,000,024 | ---- | M] () -- \Documents and Settings\test\Local Settings\Data aplikací\Google\Picasa2\cache\cacheindex_serial.pmp
[2013.05.27 20:36:20 | 000,009,157 | ---- | M] () -- \Documents and Settings\test\Plocha\ice_434\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2013.05.27 20:36:20 | 000,000,219 | ---- | M] () -- \Documents and Settings\test\Plocha\ice_434\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2013.09.04 20:10:18 | 000,003,176 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\shared\gui_items\serializers.pyc
[2008.02.02 16:48:09 | 000,008,197 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\amunits\src\coreunits\serial.pas
[2008.02.02 16:48:09 | 000,005,985 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\libndsfpc\src\nds\arm7\serial.inc
[2008.02.02 16:48:09 | 000,010,049 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\palmunits\src\seriallinkmgr.pp
[2008.02.02 16:48:09 | 000,027,216 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\palmunits\src\serialmgr.pp
[2008.02.02 16:48:09 | 000,014,471 | ---- | M] () -- \lazarus\fpc\2.2.4\source\packages\palmunits\src\serialmgrold.pp
[2007.09.12 18:37:31 | 000,005,747 | ---- | M] () -- \lazarus\fpc\2.2.4\source\rtl\unix\serial.pp
[2014.02.13 23:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.03.13 22:45:24 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2008.06.14 01:32:10 | 000,285,032 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\en\System.Runtime.Serialization.xml
[2012.07.13 18:14:26 | 000,024,576 | ---- | M] () -- \Program Files\Steam\SteamApps\common\tribes\Binaries\Autoreporter.XmlSerializers.dll
[2013.12.21 14:38:40 | 000,712,704 | ---- | M] () -- \Program Files\Steam\SteamApps\downloading\240\bin\dmserializers.dll
[2013.06.13 14:42:56 | 000,712,704 | ---- | M] () -- \Program Files\Steam\SteamApps\downloading\440\bin\dmserializers.dll
[2011.10.03 16:45:26 | 000,712,704 | ---- | M] () -- \Program Files\Steam\SteamApps\peschel\half-life 2 episode one\bin\dmserializers.dll
[2011.10.15 18:00:02 | 000,712,704 | ---- | M] () -- \Program Files\Steam\SteamApps\peschel\half-life 2\bin\dmserializers.dll
[2010.04.24 14:29:13 | 000,712,704 | ---- | M] () -- \Program Files\Steam\SteamApps\peschel\portal\bin\dmserializers.dll
[2011.03.30 07:16:52 | 000,011,581 | ---- | M] () -- \Qt\4.7.3\doc\html\qxmlserializer-members.html
[2011.03.30 07:17:14 | 000,023,058 | ---- | M] () -- \Qt\4.7.3\doc\html\qxmlserializer.html
[2011.03.30 07:18:46 | 000,002,261 | ---- | M] () -- \Qt\4.7.3\doc\src\snippets\code\src_xmlpatterns_api_qxmlserializer.cpp
[2011.03.30 07:16:16 | 000,000,326 | ---- | M] () -- \Qt\4.7.3\include\Qt\qxmlserializer.h
[2011.03.30 07:15:58 | 000,000,029 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\QXmlSerializer
[2011.03.30 07:16:04 | 000,000,055 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\qxmlserializer.h
[2011.03.30 07:16:04 | 000,000,060 | ---- | M] () -- \Qt\4.7.3\include\QtXmlPatterns\private\qxmlserializer_p.h
[2009.06.17 11:44:18 | 000,000,564 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\io\NotSerializableException.h
[2009.06.17 11:44:40 | 000,000,361 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\io\Serializable.h
[2009.06.17 11:44:40 | 000,000,715 | ---- | M] () -- \Qt\4.7.3\mingw\lib\gcc\mingw32\4.4.0\include\c++\java\io\SerializablePermission.h
[2011.03.30 07:18:48 | 000,033,073 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\bindings\js\SerializedScriptValue.cpp
[2011.03.30 07:18:48 | 000,007,630 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\bindings\js\SerializedScriptValue.h
[2011.03.30 07:18:54 | 000,008,095 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\generated\JSXMLSerializer.cpp
[2011.03.30 07:18:54 | 000,003,718 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\generated\JSXMLSerializer.h
[2011.03.30 07:18:52 | 000,001,647 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\xml\XMLSerializer.cpp
[2011.03.30 07:18:52 | 000,001,431 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\xml\XMLSerializer.h
[2011.03.30 07:18:52 | 000,001,066 | ---- | M] () -- \Qt\4.7.3\src\3rdparty\webkit\WebCore\xml\XMLSerializer.idl
[2011.03.30 07:19:12 | 000,017,898 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qxmlserializer.cpp
[2011.03.30 07:19:12 | 000,004,979 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qxmlserializer.h
[2011.03.30 07:19:12 | 000,004,673 | ---- | M] () -- \Qt\4.7.3\src\xmlpatterns\api\qxmlserializer_p.h
[2004.08.18 06:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.04.16 22:15:04 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.03.16 18:56:33 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.15 01:55:18 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.03.16 18:56:42 | 000,086,016 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2013.01.09 18:47:33 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.15 12:49:25 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\6c29ee2bedfe88dcd66993f1af135ad8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.15 12:51:04 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9860da66bf0219612908e7412b0a6e2e\System.Runtime.Serialization.ni.dll
[2013.08.15 19:51:37 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a95e0af6fa5d2e8ffd5e0091f6513271\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.08.15 19:52:58 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\ba6670610621b25b1608e457ba0ef305\System.Runtime.Serialization.ni.dll
[2014.02.15 12:53:50 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\046c2851963b30d0e14194051c03de33\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.15 12:59:37 | 002,658,304 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\fa954900a6cf3a095efadfa4c683a32c\System.Runtime.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \WINDOWS\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2011.08.04 16:10:24 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.15 01:57:27 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.08.04 16:10:23 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.02.15 01:57:25 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2004.07.15 14:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2007.10.26 04:16:32 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.06.02 08:01:28 | 000,009,272 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\en\System.Runtime.Serialization.Formatters.Soap.xml
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 08:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 08:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 19:29:04 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2004.08.18 06:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2004.08.18 06:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2004.08.18 06:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2004.08.18 06:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 08:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 21 bytes -> \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 20 bytes -> \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\ApplicationDownloaderService.exe:crc

< End of report >

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Znovu spustte OTL
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[ClearAllRestorePoints]

:services
gupdate

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\WGASetup.job

:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
O3 - HKU\S-1-5-21-1292428093-308236825-725345543-1010\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in Důvěryhodné servery)
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in Důvěryhodné servery)
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://www.facebook.com/fbplugin/win32/ ... 5574324875 (Reg Error: Key error.)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\CSC\*.tmp files -> C:\WINDOWS\CSC\*.tmp -> ]
[412 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
@Alternate Data Stream - 21 bytes -> \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 20 bytes -> \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\ApplicationDownloaderService.exe:crc

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=-

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: test
->Temp folder emptied: 589541 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 856432 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: TEST1
->Temp folder emptied: 1523053 bytes
->Temporary Internet Files folder emptied: 569751 bytes
->Google Chrome cache emptied: 18301794 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3591982 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 279 bytes

Total Files Cleaned = 24,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: test
->Flash cache emptied: 0 bytes

User: TEST1
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job moved successfully.
C:\WINDOWS\tasks\WGASetup.job moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin\ deleted successfully.
C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-1292428093-308236825-725345543-1010\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\etrading\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\www\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Starting removal of ActiveX control {32C3FEAE-0877-4767-8C20-62A5829A0945}
C:\WINDOWS\Downloaded Program Files\axfbootloader.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Starting removal of ActiveX control {67DABFBF-D0AB-41FA-9C46-CC0F21721616}
C:\WINDOWS\Downloaded Program Files\DivXPlugin.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{67DABFBF-D0AB-41FA-9C46-CC0F21721616}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{67DABFBF-D0AB-41FA-9C46-CC0F21721616}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{67DABFBF-D0AB-41FA-9C46-CC0F21721616}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{67DABFBF-D0AB-41FA-9C46-CC0F21721616}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
File C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
File C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP103.tmp\ReachFramework.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP103.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP108.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP14A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP152.tmp\System.Xml.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP152.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP161.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A3.tmp\PresentationFramework.Aero.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP24C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP25C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP325.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP395.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP404.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP421.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP427.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP487.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP49.tmp\System.Runtime.Remoting.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP49.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP525.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP52F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP58F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP67C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP98.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E.tmp folder deleted successfully.
C:\WINDOWS\CSC\csc1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10CA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI10E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI114.tmp deleted successfully.
C:\WINDOWS\Installer\MSI11B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI11C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI121.tmp deleted successfully.
C:\WINDOWS\Installer\MSI126.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI131.tmp deleted successfully.
C:\WINDOWS\Installer\MSI134.tmp deleted successfully.
C:\WINDOWS\Installer\MSI13C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI143.tmp deleted successfully.
C:\WINDOWS\Installer\MSI160.tmp deleted successfully.
C:\WINDOWS\Installer\MSI163.tmp deleted successfully.
C:\WINDOWS\Installer\MSI165.tmp deleted successfully.
C:\WINDOWS\Installer\MSI16D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI170.tmp deleted successfully.
C:\WINDOWS\Installer\MSI172.tmp deleted successfully.
C:\WINDOWS\Installer\MSI173.tmp deleted successfully.
C:\WINDOWS\Installer\MSI176.tmp deleted successfully.
C:\WINDOWS\Installer\MSI178.tmp deleted successfully.
C:\WINDOWS\Installer\MSI179.tmp deleted successfully.
C:\WINDOWS\Installer\MSI18B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI18E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI197.tmp deleted successfully.
C:\WINDOWS\Installer\MSI19A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1B6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1BB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1BC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1BE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1C5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1C9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1CA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1CE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1D5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1D6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1DA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1DB9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1E8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1EB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1FE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1FF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI203.tmp deleted successfully.
C:\WINDOWS\Installer\MSI205.tmp deleted successfully.
C:\WINDOWS\Installer\MSI208.tmp deleted successfully.
C:\WINDOWS\Installer\MSI20D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI212.tmp deleted successfully.
C:\WINDOWS\Installer\MSI216.tmp deleted successfully.
C:\WINDOWS\Installer\MSI21B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI21C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI221.tmp deleted successfully.
C:\WINDOWS\Installer\MSI222.tmp deleted successfully.
C:\WINDOWS\Installer\MSI223.tmp deleted successfully.
C:\WINDOWS\Installer\MSI224.tmp deleted successfully.
C:\WINDOWS\Installer\MSI225.tmp deleted successfully.
C:\WINDOWS\Installer\MSI227.tmp deleted successfully.
C:\WINDOWS\Installer\MSI228.tmp deleted successfully.
C:\WINDOWS\Installer\MSI22A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI22F8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI23.tmp deleted successfully.
C:\WINDOWS\Installer\MSI230.tmp deleted successfully.
C:\WINDOWS\Installer\MSI232.tmp deleted successfully.
C:\WINDOWS\Installer\MSI233.tmp deleted successfully.
C:\WINDOWS\Installer\MSI240.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2434.tmp deleted successfully.
C:\WINDOWS\Installer\MSI244.tmp deleted successfully.
C:\WINDOWS\Installer\MSI249.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI24E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI250.tmp deleted successfully.
C:\WINDOWS\Installer\MSI265.tmp deleted successfully.
C:\WINDOWS\Installer\MSI26A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI26E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI26F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI271.tmp deleted successfully.
C:\WINDOWS\Installer\MSI275.tmp deleted successfully.
C:\WINDOWS\Installer\MSI27A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI27E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI282.tmp deleted successfully.
C:\WINDOWS\Installer\MSI28A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI28F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI292.tmp deleted successfully.
C:\WINDOWS\Installer\MSI293.tmp deleted successfully.
C:\WINDOWS\Installer\MSI295.tmp deleted successfully.
C:\WINDOWS\Installer\MSI297.tmp deleted successfully.
C:\WINDOWS\Installer\MSI298.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2987.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2B1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2B6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BEC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2D8D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2DA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2DB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2ED.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2EF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2FB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI30B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI310.tmp deleted successfully.
C:\WINDOWS\Installer\MSI31C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI326.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI32F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI330.tmp deleted successfully.
C:\WINDOWS\Installer\MSI331.tmp deleted successfully.
C:\WINDOWS\Installer\MSI332.tmp deleted successfully.
C:\WINDOWS\Installer\MSI333.tmp deleted successfully.
C:\WINDOWS\Installer\MSI337.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI34.tmp deleted successfully.
C:\WINDOWS\Installer\MSI340.tmp deleted successfully.
C:\WINDOWS\Installer\MSI359.tmp deleted successfully.
C:\WINDOWS\Installer\MSI361.tmp deleted successfully.
C:\WINDOWS\Installer\MSI362.tmp deleted successfully.
C:\WINDOWS\Installer\MSI373.tmp deleted successfully.
C:\WINDOWS\Installer\MSI376.tmp deleted successfully.
C:\WINDOWS\Installer\MSI377.tmp deleted successfully.
C:\WINDOWS\Installer\MSI384.tmp deleted successfully.
C:\WINDOWS\Installer\MSI388.tmp deleted successfully.
C:\WINDOWS\Installer\MSI38D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3928.tmp deleted successfully.
C:\WINDOWS\Installer\MSI394.tmp deleted successfully.
C:\WINDOWS\Installer\MSI39BB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3B5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3C3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3CD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3D7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3DC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3ED.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3F5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3FB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI40.tmp deleted successfully.
C:\WINDOWS\Installer\MSI406.tmp deleted successfully.
C:\WINDOWS\Installer\MSI41.tmp deleted successfully.
C:\WINDOWS\Installer\MSI416.tmp deleted successfully.
C:\WINDOWS\Installer\MSI41A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI42.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43.tmp deleted successfully.
C:\WINDOWS\Installer\MSI434.tmp deleted successfully.
C:\WINDOWS\Installer\MSI435.tmp deleted successfully.
C:\WINDOWS\Installer\MSI43C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI44.tmp deleted successfully.
C:\WINDOWS\Installer\MSI44F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45.tmp deleted successfully.
C:\WINDOWS\Installer\MSI450.tmp deleted successfully.
C:\WINDOWS\Installer\MSI453.tmp deleted successfully.
C:\WINDOWS\Installer\MSI458.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI45F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI46.tmp deleted successfully.
C:\WINDOWS\Installer\MSI460.tmp deleted successfully.
C:\WINDOWS\Installer\MSI462.tmp deleted successfully.
C:\WINDOWS\Installer\MSI46D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI46E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47.tmp deleted successfully.
C:\WINDOWS\Installer\MSI47A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI48.tmp deleted successfully.
C:\WINDOWS\Installer\MSI484.tmp deleted successfully.
C:\WINDOWS\Installer\MSI48F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI49.tmp deleted successfully.
C:\WINDOWS\Installer\MSI491.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4A1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4B1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4CD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4D1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4DC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4F3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4FF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI50.tmp deleted successfully.
C:\WINDOWS\Installer\MSI508.tmp deleted successfully.
C:\WINDOWS\Installer\MSI51.tmp deleted successfully.
C:\WINDOWS\Installer\MSI511.tmp deleted successfully.
C:\WINDOWS\Installer\MSI519.tmp deleted successfully.
C:\WINDOWS\Installer\MSI51D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52.tmp deleted successfully.
C:\WINDOWS\Installer\MSI529.tmp deleted successfully.
C:\WINDOWS\Installer\MSI52D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI53.tmp deleted successfully.
C:\WINDOWS\Installer\MSI54.tmp deleted successfully.
C:\WINDOWS\Installer\MSI54A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI54B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI55.tmp deleted successfully.
C:\WINDOWS\Installer\MSI564.tmp deleted successfully.
C:\WINDOWS\Installer\MSI569.tmp deleted successfully.
C:\WINDOWS\Installer\MSI57.tmp deleted successfully.
C:\WINDOWS\Installer\MSI57D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI58.tmp deleted successfully.
C:\WINDOWS\Installer\MSI586.tmp deleted successfully.
C:\WINDOWS\Installer\MSI59.tmp deleted successfully.
C:\WINDOWS\Installer\MSI59A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI59F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5A1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5A5.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5B3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5BB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5C7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5D6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5DF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5E3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI60.tmp deleted successfully.
C:\WINDOWS\Installer\MSI61.tmp deleted successfully.
C:\WINDOWS\Installer\MSI611.tmp deleted successfully.
C:\WINDOWS\Installer\MSI612.tmp deleted successfully.
C:\WINDOWS\Installer\MSI61B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI62.tmp deleted successfully.
C:\WINDOWS\Installer\MSI621.tmp deleted successfully.
C:\WINDOWS\Installer\MSI63.tmp deleted successfully.
C:\WINDOWS\Installer\MSI64.tmp deleted successfully.
C:\WINDOWS\Installer\MSI644.tmp deleted successfully.
C:\WINDOWS\Installer\MSI64B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI65.tmp deleted successfully.
C:\WINDOWS\Installer\MSI654.tmp deleted successfully.
C:\WINDOWS\Installer\MSI655.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66.tmp deleted successfully.
C:\WINDOWS\Installer\MSI669.tmp deleted successfully.
C:\WINDOWS\Installer\MSI66E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI67.tmp deleted successfully.
C:\WINDOWS\Installer\MSI677.tmp deleted successfully.
C:\WINDOWS\Installer\MSI68.tmp deleted successfully.
C:\WINDOWS\Installer\MSI69.tmp deleted successfully.
C:\WINDOWS\Installer\MSI694.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6B3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI6FA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI70.tmp deleted successfully.
C:\WINDOWS\Installer\MSI704.tmp deleted successfully.
C:\WINDOWS\Installer\MSI71.tmp deleted successfully.
C:\WINDOWS\Installer\MSI72.tmp deleted successfully.
C:\WINDOWS\Installer\MSI723.tmp deleted successfully.
C:\WINDOWS\Installer\MSI727.tmp deleted successfully.
C:\WINDOWS\Installer\MSI74.tmp deleted successfully.
C:\WINDOWS\Installer\MSI741.tmp deleted successfully.
C:\WINDOWS\Installer\MSI74E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI75.tmp deleted successfully.
C:\WINDOWS\Installer\MSI76.tmp deleted successfully.
C:\WINDOWS\Installer\MSI764.tmp deleted successfully.
C:\WINDOWS\Installer\MSI798.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7BC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7BF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7D8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7DB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7E9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI7F6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI80.tmp deleted successfully.
C:\WINDOWS\Installer\MSI806.tmp deleted successfully.
C:\WINDOWS\Installer\MSI80B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI81.tmp deleted successfully.
C:\WINDOWS\Installer\MSI823.tmp deleted successfully.
C:\WINDOWS\Installer\MSI838.tmp deleted successfully.
C:\WINDOWS\Installer\MSI83C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI84.tmp deleted successfully.
C:\WINDOWS\Installer\MSI85.tmp deleted successfully.
C:\WINDOWS\Installer\MSI86E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI87D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI89.tmp deleted successfully.
C:\WINDOWS\Installer\MSI897.tmp deleted successfully.
C:\WINDOWS\Installer\MSI89A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8A7.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8B08.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8FA.tmp deleted successfully.
C:\WINDOWS\Installer\MSI8FF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI90.tmp deleted successfully.
C:\WINDOWS\Installer\MSI903.tmp deleted successfully.
C:\WINDOWS\Installer\MSI926.tmp deleted successfully.
C:\WINDOWS\Installer\MSI928.tmp deleted successfully.
C:\WINDOWS\Installer\MSI93.tmp deleted successfully.
C:\WINDOWS\Installer\MSI935.tmp deleted successfully.
C:\WINDOWS\Installer\MSI93F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI95.tmp deleted successfully.
C:\WINDOWS\Installer\MSI951.tmp deleted successfully.
C:\WINDOWS\Installer\MSI98E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9EF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI9FC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA01.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA3E.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA8.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAD4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIAFF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB04.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB2.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB47.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBA7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBBA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBBF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBCD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIBF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC1B.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC2.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIC9.tmp deleted successfully.
C:\WINDOWS\Installer\MSICA.tmp deleted successfully.
C:\WINDOWS\Installer\MSICB.tmp deleted successfully.
C:\WINDOWS\Installer\MSICC.tmp deleted successfully.
C:\WINDOWS\Installer\MSICE.tmp deleted successfully.
C:\WINDOWS\Installer\MSICF.tmp deleted successfully.
C:\WINDOWS\Installer\MSID0.tmp deleted successfully.
C:\WINDOWS\Installer\MSID1.tmp deleted successfully.
C:\WINDOWS\Installer\MSID2.tmp deleted successfully.
C:\WINDOWS\Installer\MSID20.tmp deleted successfully.
C:\WINDOWS\Installer\MSID29.tmp deleted successfully.
C:\WINDOWS\Installer\MSID3.tmp deleted successfully.
C:\WINDOWS\Installer\MSID4.tmp deleted successfully.
C:\WINDOWS\Installer\MSID5.tmp deleted successfully.
C:\WINDOWS\Installer\MSID6.tmp deleted successfully.
C:\WINDOWS\Installer\MSID7.tmp deleted successfully.
C:\WINDOWS\Installer\MSID73.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDA.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE2.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE8.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEC.tmp deleted successfully.
C:\WINDOWS\Installer\MSIEF.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF0.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF1.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF3.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF37.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF4.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF5.tmp deleted successfully.
C:\WINDOWS\Installer\MSIF9.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFB.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFE.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFF.tmp deleted successfully.
ADS \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc deleted successfully.
ADS \Documents and Settings\test\Data aplikací\Sony Online Entertainment\ApplicationUpdater\ApplicationDownloaderService.exe:crc deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 04282014_183716

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_4f0.dat not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete Ccleaner http://www.piriform.com/ccleaner/download/slim a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak je na tom pc.

Vsechny kroky jsou udelané internet stale jede a zda se mi to v poradku mam jeste pro jistotu poslat log z RSitu??

Pocitac den dva sledujte a testujte, az pak dejte novy log z RSIT a napiste stav

Dobře děkuji

.

Neni zac

Internet zase začíná blbnout ráno ještě jel a teď zase moc nejede
za chvili dam log z RSITu

Logfile of random's system information tool 1.06 (written by random/random)
Run by TEST1 at 2014-05-02 13:06:27
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 149 GB (31%) free of 477 GB
Total RAM: 2047 MB (67% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-16 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-26 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-16 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-03-21 16126464]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-04-26 3873704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Games\World_of_Tanks\WorldOfTanks.exe"="C:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\World of Warcraft\Launcher.patch.exe"="C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:winlogon"
"C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe"="C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe"="C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe:*:Enabled:Mount & Blade: Warband"
"C:\Soldat\Soldat.exe"="C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe"="C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Battle.net\Battle.net.exe"="C:\Program Files\Battle.net\Battle.net.exe:*:Enabled:Battle.net"
"C:\Program Files\Hearthstone\Hearthstone.exe"="C:\Program Files\Hearthstone\Hearthstone.exe:*:Enabled:Hearthstone"
"C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe"="C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe:*:Enabled:Loadout"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe:*:Enabled:Battle.net Update Agent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2014-05-02 13:06:27 ----D---- C:\rsit
2014-04-30 20:13:23 ----SHD---- C:\RECYCLER
2014-04-30 12:35:18 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Skype
2014-04-30 11:37:21 ----A---- C:\WINDOWS\resetlog.txt
2014-04-30 06:20:53 ----D---- C:\WINDOWS\erdnt
2014-04-29 11:23:34 ----D---- C:\Program Files\Defraggler
2014-04-27 19:41:38 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-04-27 19:09:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)
2014-04-26 23:21:11 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Adobe
2014-04-26 23:21:07 ----D---- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
2014-04-26 22:56:27 ----D---- C:\Program Files\AVAST Software
2014-04-26 22:55:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-04-26 14:35:27 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Sun
2014-04-26 12:05:06 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Malwarebytes
2014-04-26 11:08:29 ----D---- C:\Program Files\trend micro
2014-04-26 10:22:20 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Google
2014-04-26 10:21:46 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz
2014-04-09 21:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$

======List of files/folders modified in the last 1 months======

2014-05-02 12:34:16 ----D---- C:\WINDOWS\temp
2014-05-02 12:11:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-01 23:49:44 ----SHD---- C:\WINDOWS\Installer
2014-05-01 23:49:32 ----D---- C:\WINDOWS
2014-05-01 23:49:14 ----RSD---- C:\WINDOWS\assembly
2014-05-01 23:09:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\PMB Files
2014-05-01 00:04:51 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-30 20:08:52 ----D---- C:\WINDOWS\Prefetch
2014-04-30 19:30:49 ----D---- C:\Program Files\Warcraft III
2014-04-30 08:27:43 ----D---- C:\WINDOWS\system32\Restore
2014-04-30 08:27:42 ----SHD---- C:\System Volume Information
2014-04-30 06:21:21 ----D---- C:\Qoobox
2014-04-30 06:21:08 ----D---- C:\WINDOWS\system32\drivers
2014-04-29 11:23:34 ----D---- C:\Program Files
2014-04-29 11:16:31 ----D---- C:\Program Files\Steam
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Minidump
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Logs
2014-04-29 11:13:27 ----D---- C:\Program Files\CCleaner
2014-04-29 08:29:33 ----D---- C:\WINDOWS\system32
2014-04-28 18:38:49 ----SHD---- C:\WINDOWS\CSC
2014-04-28 18:38:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-04-28 18:38:46 ----SD---- C:\WINDOWS\Tasks
2014-04-27 19:42:09 ----D---- C:\Program Files\Mozilla Firefox
2014-04-27 16:30:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2014-04-26 23:05:39 ----SD---- C:\Documents and Settings\TEST1\Data aplikací\Microsoft
2014-04-26 23:05:07 ----D---- C:\Program Files\Google
2014-04-26 23:01:47 ----D---- C:\WINDOWS\WinSxS
2014-04-26 19:48:05 ----A---- C:\WINDOWS\system.ini
2014-04-26 19:43:49 ----D---- C:\WINDOWS\AppPatch
2014-04-26 19:43:47 ----D---- C:\Program Files\Common Files
2014-04-26 14:28:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-04-21 21:47:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-04-11 08:00:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-10 14:29:23 ----HD---- C:\WINDOWS\inf
2014-04-09 21:48:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-04-09 21:47:54 ----D---- C:\Program Files\Internet Explorer
2014-04-09 21:47:43 ----D---- C:\WINDOWS\ie8updates

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-04-26 776976]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-26 24184]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-10-16 165376]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-10-16 18048]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-11-16 50704]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-15 38656]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-27 4395008]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-14 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 ax8x5rqn;ax8x5rqn; C:\WINDOWS\system32\drivers\ax8x5rqn.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Classic\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 RsFx0102;RsFx0102 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [2013-02-09 8704]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-11 40999448]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-06-17 75136]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2010-02-13 685816]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]

-----------------EOF-----------------

Logfile of random's system information tool 1.06 (written by random/random)
Run by TEST1 at 2014-05-02 13:06:27
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 149 GB (31%) free of 477 GB
Total RAM: 2047 MB (67% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-16 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-26 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-16 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-03-21 16126464]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-04-26 3873704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Games\World_of_Tanks\WorldOfTanks.exe"="C:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\World of Warcraft\Launcher.patch.exe"="C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:winlogon"
"C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe"="C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe"="C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe:*:Enabled:Mount & Blade: Warband"
"C:\Soldat\Soldat.exe"="C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe"="C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Battle.net\Battle.net.exe"="C:\Program Files\Battle.net\Battle.net.exe:*:Enabled:Battle.net"
"C:\Program Files\Hearthstone\Hearthstone.exe"="C:\Program Files\Hearthstone\Hearthstone.exe:*:Enabled:Hearthstone"
"C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe"="C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe:*:Enabled:Loadout"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe:*:Enabled:Battle.net Update Agent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2014-05-02 13:06:27 ----D---- C:\rsit
2014-04-30 20:13:23 ----SHD---- C:\RECYCLER
2014-04-30 12:35:18 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Skype
2014-04-30 11:37:21 ----A---- C:\WINDOWS\resetlog.txt
2014-04-30 06:20:53 ----D---- C:\WINDOWS\erdnt
2014-04-29 11:23:34 ----D---- C:\Program Files\Defraggler
2014-04-27 19:41:38 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-04-27 19:09:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)
2014-04-26 23:21:11 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Adobe
2014-04-26 23:21:07 ----D---- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
2014-04-26 22:56:27 ----D---- C:\Program Files\AVAST Software
2014-04-26 22:55:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-04-26 14:35:27 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Sun
2014-04-26 12:05:06 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Malwarebytes
2014-04-26 11:08:29 ----D---- C:\Program Files\trend micro
2014-04-26 10:22:20 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Google
2014-04-26 10:21:46 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz
2014-04-09 21:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$

======List of files/folders modified in the last 1 months======

2014-05-02 12:34:16 ----D---- C:\WINDOWS\temp
2014-05-02 12:11:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-01 23:49:44 ----SHD---- C:\WINDOWS\Installer
2014-05-01 23:49:32 ----D---- C:\WINDOWS
2014-05-01 23:49:14 ----RSD---- C:\WINDOWS\assembly
2014-05-01 23:09:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\PMB Files
2014-05-01 00:04:51 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-30 20:08:52 ----D---- C:\WINDOWS\Prefetch
2014-04-30 19:30:49 ----D---- C:\Program Files\Warcraft III
2014-04-30 08:27:43 ----D---- C:\WINDOWS\system32\Restore
2014-04-30 08:27:42 ----SHD---- C:\System Volume Information
2014-04-30 06:21:21 ----D---- C:\Qoobox
2014-04-30 06:21:08 ----D---- C:\WINDOWS\system32\drivers
2014-04-29 11:23:34 ----D---- C:\Program Files
2014-04-29 11:16:31 ----D---- C:\Program Files\Steam
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Minidump
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Logs
2014-04-29 11:13:27 ----D---- C:\Program Files\CCleaner
2014-04-29 08:29:33 ----D---- C:\WINDOWS\system32
2014-04-28 18:38:49 ----SHD---- C:\WINDOWS\CSC
2014-04-28 18:38:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-04-28 18:38:46 ----SD---- C:\WINDOWS\Tasks
2014-04-27 19:42:09 ----D---- C:\Program Files\Mozilla Firefox
2014-04-27 16:30:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2014-04-26 23:05:39 ----SD---- C:\Documents and Settings\TEST1\Data aplikací\Microsoft
2014-04-26 23:05:07 ----D---- C:\Program Files\Google
2014-04-26 23:01:47 ----D---- C:\WINDOWS\WinSxS
2014-04-26 19:48:05 ----A---- C:\WINDOWS\system.ini
2014-04-26 19:43:49 ----D---- C:\WINDOWS\AppPatch
2014-04-26 19:43:47 ----D---- C:\Program Files\Common Files
2014-04-26 14:28:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-04-21 21:47:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-04-11 08:00:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-10 14:29:23 ----HD---- C:\WINDOWS\inf
2014-04-09 21:48:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-04-09 21:47:54 ----D---- C:\Program Files\Internet Explorer
2014-04-09 21:47:43 ----D---- C:\WINDOWS\ie8updates

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-04-26 776976]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-26 24184]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-10-16 165376]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-10-16 18048]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-11-16 50704]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-15 38656]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-27 4395008]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-14 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 ax8x5rqn;ax8x5rqn; C:\WINDOWS\system32\drivers\ax8x5rqn.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Classic\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 RsFx0102;RsFx0102 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [2013-02-09 8704]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-11 40999448]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-06-17 75136]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2010-02-13 685816]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]

-----------------EOF-----------------

Co to znamena, ze "moc nejede"? Nejaky lepsi popis by se hodil.

Proc tu zas davate log ze stareho RSIT? Kouknete na zacatek, na mou prvni odpoved a aktualizujte skener.

no jel a pak najednou prestal jet na nejakou dobu a pak otec pouzil WSF a zase zacal jet

a ten RSIT se nam smazal tak jsem stahoval z fora jak je to tam popsany tak zato se omlouvam tady je ten aktualizovanej

Logfile of random's system information tool 1.09 (written by random/random)
Run by TEST1 at 2014-05-02 14:04:39
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 149 GB (31%) free of 477 GB
Total RAM: 2047 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:04:44, on 2.5.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hi-Rez Studios\HiPatchService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tunngle\TnglCtrl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\TEST1\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\TEST1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6177409987
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} (Battlefield Play4Free Updater) - https://battlefield.play4free.com/stati ... 0.66.2.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe

--
End of file - 6391 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-16 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-26 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-16 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-03-21 16126464]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-04-26 3873704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Games\World_of_Tanks\WorldOfTanks.exe"="C:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WorldOfWarplanes.exe:*:Enabled:World of Warplanes"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe"="C:\Program Files\Ubisoft\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\World of Warcraft\Launcher.patch.exe"="C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe"="C:\Program Files\World_of_Warplanes\World_of_Warplanes\WOWpLauncher.exe:*:Enabled:World of Warplanes Launcher"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:winlogon"
"C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe"="C:\Program Files\Steam\SteamApps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe"="C:\Program Files\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe:*:Enabled:Mount & Blade: Warband"
"C:\Soldat\Soldat.exe"="C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe"="C:\Documents and Settings\test\Plocha\Age of Empires II - Conquerors\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Battle.net\Battle.net.exe"="C:\Program Files\Battle.net\Battle.net.exe:*:Enabled:Battle.net"
"C:\Program Files\Hearthstone\Hearthstone.exe"="C:\Program Files\Hearthstone\Hearthstone.exe:*:Enabled:Hearthstone"
"C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe"="C:\Program Files\Steam\SteamApps\common\Loadout\Loadout.exe:*:Enabled:Loadout"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2638\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.beta.2737\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2717\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2816\Agent.exe:*:Enabled:Battle.net Update Agent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"VIDC.FPS1"=frapsvid.dll
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2014-05-02 13:06:27 ----D---- C:\rsit
2014-04-30 20:13:23 ----SHD---- C:\RECYCLER
2014-04-30 12:35:18 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Skype
2014-04-30 11:37:21 ----A---- C:\WINDOWS\resetlog.txt
2014-04-30 06:20:53 ----D---- C:\WINDOWS\erdnt
2014-04-29 11:23:34 ----D---- C:\Program Files\Defraggler
2014-04-27 19:41:38 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-04-27 19:09:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)
2014-04-27 19:09:46 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-04-27 19:08:47 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-04-26 23:21:11 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Adobe
2014-04-26 23:21:07 ----D---- C:\Documents and Settings\TEST1\Data aplikací\AVAST Software
2014-04-26 23:01:52 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-04-26 23:01:51 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-04-26 23:01:50 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-04-26 23:01:50 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-04-26 23:01:41 ----A---- C:\WINDOWS\avastSS.scr
2014-04-26 22:56:27 ----D---- C:\Program Files\AVAST Software
2014-04-26 22:55:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-04-26 14:35:27 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Sun
2014-04-26 12:05:06 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Malwarebytes
2014-04-26 11:08:29 ----D---- C:\Program Files\trend micro
2014-04-26 10:22:20 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Google
2014-04-26 10:21:46 ----D---- C:\Documents and Settings\TEST1\Data aplikací\Seznam.cz
2014-04-09 21:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$

======List of files/folders modified in the last 1 month======

2014-05-02 12:34:16 ----D---- C:\WINDOWS\temp
2014-05-02 12:11:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-01 23:49:44 ----SHD---- C:\WINDOWS\Installer
2014-05-01 23:49:32 ----D---- C:\WINDOWS
2014-05-01 23:49:14 ----RSD---- C:\WINDOWS\assembly
2014-05-01 23:09:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\PMB Files
2014-05-01 00:04:51 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-30 20:08:52 ----D---- C:\WINDOWS\Prefetch
2014-04-30 19:30:49 ----D---- C:\Program Files\Warcraft III
2014-04-30 08:27:43 ----D---- C:\WINDOWS\system32\Restore
2014-04-30 08:27:42 ----SHD---- C:\System Volume Information
2014-04-30 06:21:21 ----D---- C:\Qoobox
2014-04-30 06:21:08 ----D---- C:\WINDOWS\system32\drivers
2014-04-29 11:23:34 ----D---- C:\Program Files
2014-04-29 11:16:31 ----D---- C:\Program Files\Steam
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Minidump
2014-04-29 11:16:30 ----D---- C:\WINDOWS\Logs
2014-04-29 11:13:27 ----D---- C:\Program Files\CCleaner
2014-04-29 08:29:33 ----D---- C:\WINDOWS\system32
2014-04-28 18:38:49 ----SHD---- C:\WINDOWS\CSC
2014-04-28 18:38:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-04-28 18:38:46 ----SD---- C:\WINDOWS\Tasks
2014-04-28 18:37:22 ----D---- C:\WINDOWS\system32\drivers\etc
2014-04-27 19:42:09 ----D---- C:\Program Files\Mozilla Firefox
2014-04-27 16:30:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2014-04-26 23:05:39 ----SD---- C:\Documents and Settings\TEST1\Data aplikací\Microsoft
2014-04-26 23:05:07 ----D---- C:\Program Files\Google
2014-04-26 23:01:47 ----D---- C:\WINDOWS\WinSxS
2014-04-26 19:48:05 ----A---- C:\WINDOWS\system.ini
2014-04-26 19:43:49 ----D---- C:\WINDOWS\AppPatch
2014-04-26 19:43:47 ----D---- C:\Program Files\Common Files
2014-04-26 14:28:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-04-21 21:47:21 ----A---- C:\WINDOWS\NeroDigital.ini
2014-04-11 08:00:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-10 14:29:23 ----HD---- C:\WINDOWS\inf
2014-04-09 21:48:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-04-09 21:47:54 ----D---- C:\Program Files\Internet Explorer
2014-04-09 21:47:43 ----D---- C:\WINDOWS\ie8updates

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-26 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-26 180632]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-05-17 50176]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-05-16 19968]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-06-27 66560]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-04-07 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-04-26 776976]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-26 24184]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-10-16 165376]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-10-16 18048]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-11-16 50704]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-15 38656]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-27 4395008]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-14 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 ax8x5rqn;ax8x5rqn; C:\WINDOWS\system32\drivers\ax8x5rqn.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Classic\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 RsFx0102;RsFx0102 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [2013-02-09 8704]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2008-07-11 40999448]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-06-17 75136]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2010-02-13 685816]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-07-10 258072]

-----------------EOF-----------------

VIRY.CZ

Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC

Re: Zahlcené PC