VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosim o kontrolu logu (dost zatrepany)

https://forum.viry.cz:443/viewtopic.php?t=101713

Stránka 1 z 2

prosim o kontrolu logu (dost zatrepany)

Napsal: 05 čer 2010 16:32
od gogy27
Budem vdacny za kazdu radu :)

Logfile of random's system information tool 1.07 (written by random/random)
Run by user at 2010-06-05 17:25:45
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 801 MB (2%) free of 33 GB
Total RAM: 383 MB (12% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:27:37, on 5. 6. 2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PHPWebServer\mysql\bin\mysqld.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\sm56hlpr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\USB Disk Tool\USNDISKT.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\user\Plocha\RSIT.exe
C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\user.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {95289393-33EA-4F8D-B952-483415B9C955} - (no file)
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll (file missing)
O2 - BHO: Adssite Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\adssite_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll (file missing)
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ads_optimizer - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\system32\nspEA.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: rightonadz browser optimizer - {b9b2c59b-8841-60b2-6042-c2e4108047ae} - C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll (file missing)
O2 - BHO: WhIeHelperObj Class - {c900b400-cdfe-11d3-976a-00e02913a9e0} - C:\Program Files\webHancer\programs\whiehlpr.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: MySidesearch Search Assistant - {DDFA1356-E6ED-42a5-9D62-93211D424A90} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ASUS Live Update] rem ***C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [USB Disk Tool] C:\Program Files\USB Disk Tool\USNDISKT.EXE
O4 - HKLM\..\Run: [FortKnoxPersonalFirewall] "C:\Program Files\NETGATE\FortKnox Personal Firewall 2007\FortKnoxGUI.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\RunOnce: [NSSInstallation] C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe /RunOnce
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {33288993-5664-11D4-8B5B-00D0B73B3518} (ell Class) - http://www.easports.com/downloads/games ... /ieell.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://www.ea.com/downloads/rtpatch/EARTPX.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/softwar ... launch.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 11493 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\NSSstub.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2145271908-1465603126-2461060743-1005Core1cac6d64cfd958e.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D39A900-0F3A-4C29-A254-3E65244FDC34}]
ContextHelper - C:\Program Files\ContextTool\ContextTool-2.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1648E328-3E5A-4EA5-A9C6-E5F09EE272DA}]
Adssite Search Assistant - C:\WINDOWS\system32\adssite_sidebar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D8282E6-BC4F-469B-AAED-7E4FF077AD93}]
BrowserCmp - C:\WINDOWS\system32\iebrowserc.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-09-23 1088296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9C8A568E-4201-478a-8536-526CF371D2E2}]
ads_optimizer - C:\WINDOWS\system32\nspEA.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-05-20 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-05-20 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9b2c59b-8841-60b2-6042-c2e4108047ae}]
rightonadz browser optimizer - C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c900b400-cdfe-11d3-976a-00e02913a9e0}]
WhIeHelperObj Class - C:\Program Files\webHancer\programs\whiehlpr.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-09-29 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DDFA1356-E6ED-42a5-9D62-93211D424A90}]
MySidesearch Search Assistant - C:\WINDOWS\system32\mysidesearch_sidebar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-09-29 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-05-20 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-02-22 106496]
"RemoteControl"=C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe [2004-11-02 32768]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-05-04 16206848]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ASUS Live Update"=rem ***C:\Program Files\ASUS\ASUS Live Update\ALU.exe []
"Power_Gear"=C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe [2006-03-14 90112]
"Wireless Console 2"=C:\Program Files\Wireless Console 2\wcourier.exe [2005-10-17 987136]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-10-21 761945]
"ABLKSR"=C:\WINDOWS\ABLKSR\ABLKSR.exe [2006-01-02 61440]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2006-03-08 344064]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-01-19 544768]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"USB Disk Tool"=C:\Program Files\USB Disk Tool\USNDISKT.EXE [2003-07-31 122880]
"FortKnoxPersonalFirewall"=C:\Program Files\NETGATE\FortKnox Personal Firewall 2007\FortKnoxGUI.exe []
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2005-05-18 917504]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 171008]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NSSInstallation"=C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe [2009-01-24 181624]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-04-01 486856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe /automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ComplexWebServer]
C:\PHPWebServer\bin\ServiceDirect.exe [2006-01-31 818688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter2.0]
C:\Program Files\Brother\ControlCenter2\brctrcen.exe [2005-01-07 864256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Emurayden PSX Emulator]
c:\Archivos de Programa\Emurayden PSX Emulator v2.1\Emurayden PSX AutoLauncher.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-09-25 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2004-04-14 40960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Installation Diagnostics]
C:\Program Files\Brother\Brmfl04g\Brinstck.exe [2005-03-21 122880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mediaware Task Manager 3.5]
C:\Program Files\Mediaware Task Manager 3.5\TaskManager.exe /m []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Net4Switch]
C:\Program Files\ASUS\Net4Switch\Net4Switch.exe [2006-03-02 1101824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OBSWATCH]
C:\PROGRA~1\ORANGEBS\Watch.exe [2005-09-07 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2004-04-14 57393]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt]
C:\Program Files\Brother\Brmfl04g\BrStDvPt.exe [2004-11-11 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\spa_start]
C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll DllInit []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-10-14 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-09-29 148888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-12 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [2008-04-23 29696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BTTray.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2003-07-29 499773]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^user^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.0.lnk]
C:\PROGRA~1\OPENOF~1.0\program\QUICKS~1.EXE [2006-06-27 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^user^Nabídka Start^Programy^Po spuštění^RollerCoaster Tycoon 3 Registration.lnk]
C:\Documents and Settings\user\Local Settings\Temp\{8B290F8E-B5F7-40EC-8B95-E494958E7816}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe /remind /language=SKY /PRNM=RollerCoaster Tycoon 3/PRMP=RCT3/SKUN=PCXX/GTYP=STRY []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"CWS_MySQL_3306"=2
"CWS_Apache_80"=2
"WMPNetworkSvc"=3
"gusvc"=3
"gupdate"=2
"fsssvc"=3
"FLEXnet Licensing Service"=3
"Bonjour Service"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-03-08 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-09-20 441136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~4\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\MSMSGS.EXE"="C:\Program Files\Messenger\MSMSGS.EXE:*:Enabled:Windows Messenger"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:M5Shell"
"C:\Program Files\EA SPORTS\NHL 99\nhl99.exe"="C:\Program Files\EA SPORTS\NHL 99\nhl99.exe:*:Enabled:nhl99"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe"="C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Counter-Strike Source\hl2.exe"="C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Counter-Strike 1.6\hlds.exe"="C:\Program Files\Counter-Strike 1.6\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\BitLord\BitLord.exe"="C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\Program Files\EA SPORTS\NHL07\nhl2007.exe"="C:\Program Files\EA SPORTS\NHL07\nhl2007.exe:*:Enabled:nhl2007"
"C:\Documents and Settings\USER\Plocha\civilization 2\Civilization 2\civ2.exe"="C:\Documents and Settings\USER\Plocha\civilization 2\Civilization 2\civ2.exe:*:Enabled:civ2"
"C:\Program Files\Counter-Strike 1.6 Patch Version 26\hltv.exe"="C:\Program Files\Counter-Strike 1.6 Patch Version 26\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\Teamspeak2_RC2\server_windows.exe"="C:\Program Files\Teamspeak2_RC2\server_windows.exe:*:Enabled:Server"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\BitLord\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe"="C:\Program Files\BitLord\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Documents and Settings\USER\Plocha\Counter-Strike 1.6 + Half-Life\hltv.exe"="C:\Documents and Settings\USER\Plocha\Counter-Strike 1.6 + Half-Life\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\HLSW\hlsw.exe"="C:\Program Files\HLSW\hlsw.exe:*:Enabled:hlsw"
"C:\wamp\bin\apache\apache2.2.6\bin\httpd.exe"="C:\wamp\bin\apache\apache2.2.6\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\CesarFTP\Server.exe"="C:\Program Files\CesarFTP\Server.exe:*:Enabled:Server"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\International Online Soccer\hl2.exe"="C:\Program Files\International Online Soccer\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Aspyr Media, Inc\THAW\Game\THAW.EXE"="C:\Program Files\Aspyr Media, Inc\THAW\Game\THAW.EXE:*:Enabled:Tony Hawk's American Wasteland"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Firebird_1_5\bin\fbserver.exe"="C:\Program Files\Firebird_1_5\bin\fbserver.exe:*:Enabled:Firebird SQL Server"
"D:\far cry\Bin32\FarCry.exe"="D:\far cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"D:\Rainbow 6\LockdownDed.exe"="D:\Rainbow 6\LockdownDed.exe:*:Enabled:Rainbow Six: Lockdown PC Dedicated Server"
"C:\WINDOWS\System32\dplaysvr.exe"="C:\WINDOWS\System32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\3DO\Heroes3\Heroes3.exe"="C:\Program Files\3DO\Heroes3\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III"
"D:\Program Files\BitLord\BitLord.exe"="D:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord"
"D:\MOH\mohpa.exe"="D:\MOH\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm)"
"C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe"="C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"D:\Boiling Point - Cesta do pekel\XENUS.EXE"="D:\Boiling Point - Cesta do pekel\XENUS.EXE:*:Disabled:XENUS"
"D:\NHL09\nhl2009.exe"="D:\NHL09\nhl2009.exe:*:Enabled:nhl2009"
"D:\KONAMI\Pro Evolution Soccer 5\pes5.exe"="D:\KONAMI\Pro Evolution Soccer 5\pes5.exe:*:Enabled:pes5.exe"
"C:\Program Files\Grand Theft Auto\gtawin\GtAwin.exe"="C:\Program Files\Grand Theft Auto\gtawin\GtAwin.exe:*:Enabled:Grand Theft Auto"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\PHPWebServer\apache\bin\Apache.exe"="C:\PHPWebServer\apache\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Play+Smile\Texas Hold'em Poker 3D - Deluxe Edition\Poker3d.exe"="C:\Program Files\Play+Smile\Texas Hold'em Poker 3D - Deluxe Edition\Poker3d.exe:*:Enabled:Poker3d"
"C:\Documents and Settings\USER\Plocha\chmatakov15.exe"="C:\Documents and Settings\USER\Plocha\chmatakov15.exe:*:Enabled:chmatakov15"
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"D:\FeaR\FEARServer.exe"="D:\FeaR\FEARServer.exe:*:Enabled:F.E.A.R. Stand-Alone Server"
"D:\FeaR\FEARMP.exe"="D:\FeaR\FEARMP.exe:*:Enabled:FEAR"
"D:\Nascar3\NASCAR Racing 3.exe"="D:\Nascar3\NASCAR Racing 3.exe:*:Enabled:NASCAR Racing 3"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\USER\Plocha\civilization 2\civ2.exe"="C:\Documents and Settings\USER\Plocha\civilization 2\civ2.exe:*:Enabled:civ2"
"D:\Sid Meier's Civilization 4\Civilization4.exe"="D:\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\WINDOWS\System32\dpnsvr.exe"="C:\WINDOWS\System32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"D:\HEroes%204%20Might%20and%20Magic\heroes4c.exe"="D:\HEroes%204%20Might%20and%20Magic\heroes4c.exe:*:Enabled:Heroes of Might and Magic® IV: Winds of War™"
"D:\Nascar 2003\NR2003.exe"="D:\Nascar 2003\NR2003.exe:*:Enabled:NASCAR Racing 2003 Season"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{00cf30ba-5b01-11dd-b14b-bad0beefface}]
shell\AutoRun\command - G:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{01ca2e30-a087-11de-b2e1-001731f56978}]
shell\AutoRun\command - G:\seamlessKeyLauncher.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44805116-77d4-11db-abd5-bad0beefface}]
shell\AutoRun\command - F:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5a892aa4-cebd-11dd-b245-d9eac43aacba}]
shell\AutoRun\command - G:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5a892aa5-cebd-11dd-b245-d9eac43aacba}]
shell\AutoRun\command - setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9151642e-7562-11de-b2cd-001731dcabe5}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9f1bb1d0-8bd9-11de-b2d9-001731dcabe5}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b8227148-8a6a-11de-b2d8-001731f56978}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fcc0070e-cec0-11dd-b246-001731f56978}]
shell\AutoRun\command - G:\setupSNK.exe


======File associations======

.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 months======

2010-06-05 17:25:55 ----D---- C:\Program Files\trend micro
2010-06-05 17:25:45 ----D---- C:\rsit
2010-05-08 14:51:36 ----D---- C:\Documents and Settings\user\Data aplikací\COWON
2010-05-08 14:42:49 ----D---- C:\Program Files\Common Files\COWON
2010-05-08 14:41:31 ----D---- C:\Program Files\JetAudio

======List of files/folders modified in the last 1 months======

2010-06-05 16:54:24 ----RSH---- C:\boot.ini
2010-06-05 16:54:24 ----A---- C:\WINDOWS\win.ini
2010-06-05 16:54:24 ----A---- C:\WINDOWS\system.ini
2010-06-05 15:08:42 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #3.txt
2010-06-04 14:18:04 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2010-06-01 15:35:36 ----A---- C:\WINDOWS\wincmd.ini
2010-05-27 20:56:14 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #2.txt
2010-05-20 16:12:40 ----A---- C:\WINDOWS\APCBT.ini
2010-05-20 15:24:16 ----A---- C:\WINDOWS\Sierra.ini
2010-05-20 12:22:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-05-12 11:21:16 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-05-10 16:13:38 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0x01000000 papycpu2;papycpu2; C:\WINDOWS\System32\DRIVERS\papycpu2.sys [2003-01-17 1984]
R0x01000000 papyjoy;papyjoy; C:\WINDOWS\System32\DRIVERS\papyjoy.sys [2003-01-17 1856]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys []
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2006-07-31 15781]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS []
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-03-08 1506816]
R3 BCM43XX;ASUS 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-03-17 101376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-05-04 4271616]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-01-18 80512]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-01-19 862340]
R3 SynMini;USB2.0 1.3M Web Cam; C:\WINDOWS\System32\Drivers\SynMini.sys [2005-10-03 720470]
R3 SynScan;USB2.0 1.3M Web Cam Still Image; C:\WINDOWS\System32\Drivers\SynScan.sys [2005-10-03 8278]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-10-21 191936]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 a8cx2mre;a8cx2mre; C:\WINDOWS\system32\drivers\a8cx2mre.sys []
S3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\System32\Drivers\BrScnUsb.sys [2004-10-15 15295]
S3 BthEnum;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GTF32BUS;GT F32 BUS; C:\WINDOWS\system32\DRIVERS\gtf32bus.sys [2005-09-01 32000]
S3 GTFFBUS;GT FF BUS; C:\WINDOWS\system32\DRIVERS\gtffbus.sys [2006-01-25 16000]
S3 GTMMDMUSB;GT M 3G+ USB MDM; C:\WINDOWS\system32\DRIVERS\gtmmdmusb.sys [2006-02-01 25472]
S3 GTMNDISIRPXP;GT M 3G+ IRP NDIS; C:\WINDOWS\system32\DRIVERS\Gtm51Irp.sys [2006-02-01 102784]
S3 GTMSERUSB;GT M 3G+ USB SER; C:\WINDOWS\system32\DRIVERS\gtmserusb.sys [2006-02-01 21760]
S3 GTPTSER;GT PT SER; C:\WINDOWS\system32\DRIVERS\gtptser.sys [2005-09-01 7936]
S3 GTSCSER;GT SC SER; C:\WINDOWS\system32\DRIVERS\gtscser.sys [2005-08-29 18944]
S3 GtVUsb;GlobeTrotter 3G+ Viper Filter Service; C:\WINDOWS\system32\DRIVERS\GtVUsb.sys [2005-12-22 5120]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-02-25 17480]
S3 HidBth;Miniport Bluetooth HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidbth.sys [2008-04-14 25600]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 ipswuio;ipswuio; C:\WINDOWS\System32\DRIVERS\ipswuio.sys [2006-01-24 34944]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys [2008-04-13 22016]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSNXSTOR;Mass Storage driver ; C:\WINDOWS\System32\DRIVERS\Usbsnx2k.SYS [2003-07-03 53083]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 zlportio;zlportio; \??\D:\UltraStar Deluxe\zlportio.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-03-08 405504]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 FTRTSVC;France Telecom Routing Table Service; C:\WINDOWS\System32\FTRTSVC.exe [2004-06-10 40960]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-09-29 152984]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-03-27 507904]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R4 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R4 CWS_MySQL_3306;CWS_MySQL_3306; C:\PHPWebServer\mysql\bin\mysqld.exe [2005-12-02 3526656]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 CWS_Apache_80;CWS_Apache_80; C:\PHPWebServer\apache\bin\apache.exe [2005-10-09 20541]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-27 654848]
S4 fsssvc;Služba Bezpečnosť rodiny v službe Windows Live; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-20 135664]
S4 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-31 182768]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 05 čer 2010 16:58
od vyosek
Zdravim,

jake mate problemy s PC :???:
:arrow: Mate velmi malo volne pameti - smazte nepotrebne veci, taktez RAMka je mala
:arrow: Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
:arrow: Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaru
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleanre doporucuji pouzivat cca co 14 dni
:arrow: Stahnete OTL (viz muj podpis) a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 05 čer 2010 18:05
od gogy27
:arrow: problemy je akurat s rychlostou PC, ale aj samotneho internetu (wifi) od orange. Mam predplatenych 5 GB a len teraz sa mi vynulovali od 1.juna a nic som ani nestahoval poriadne.
:arrow: niektore programy som povymazoval, ale ja mam celkovo v notebooku do kopy malo pamete...s RAMkou nic nespravim lebo mam notebook
:arrow: toolbary odinstalovane
:arrow: praca s ccleaner dokoncena

OTL.txt

OTL logfile created on: 5. 6. 2010 18:48:54 - Run 2
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

383,00 Mb Total Physical Memory | 44,00 Mb Available Physical Memory | 12,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 48,00% Paging File free
Paging file location(s): C:\pagefile.sys 1024 1152 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 2,51 Gb Free Space | 7,74% Space Free | Partition Type: FAT32
Drive D: | 21,56 Gb Total Space | 8,20 Gb Free Space | 38,05% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: N-35D6C3A98FA74
Current User Name: user
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.06.05 18:42:38 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
PRC - [2010.05.20 20:56:46 | 000,943,600 | ---- | M] (Google Inc.) -- C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.03.01 12:59:44 | 000,172,792 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ6.5\ICQ.exe
PRC - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.04.01 11:39:48 | 000,486,856 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2008.03.27 09:15:38 | 000,507,904 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32krn.exe
PRC - [2007.05.28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2006.11.03 19:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006.11.03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2006.03.14 17:46:00 | 000,090,112 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\Asus\Power4 Gear\BatteryLife.exe
PRC - [2006.02.22 23:40:40 | 000,106,496 | ---- | M] () -- C:\WINDOWS\ATK0100\HControl.exe
PRC - [2006.02.21 02:25:58 | 002,170,880 | ---- | M] () -- C:\WINDOWS\ATK0100\ATKOSD.exe
PRC - [2006.01.19 23:34:26 | 000,544,768 | R--- | M] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe
PRC - [2005.12.02 11:41:12 | 003,526,656 | ---- | M] () -- C:\PHPWebServer\mysql\bin\mysqld.exe
PRC - [2005.10.17 17:09:34 | 000,987,136 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2005.05.18 13:54:30 | 000,917,504 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32kui.exe
PRC - [2004.11.02 20:24:46 | 000,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
PRC - [2004.06.10 16:20:12 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe
PRC - [2003.07.31 18:25:18 | 000,122,880 | ---- | M] ( ) -- C:\Program Files\USB Disk Tool\USNDISKT.exe


========== Modules (SafeList) ==========

MOD - [2010.06.05 18:42:38 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
MOD - [2008.04.14 05:19:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - [2009.08.05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009.01.27 20:58:42 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [Disabled | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.03.27 09:15:38 | 000,507,904 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2007.05.28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2006.11.03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005.12.02 11:41:12 | 003,526,656 | ---- | M] () [Disabled | Running] -- C:\PHPWebServer\mysql\bin\mysqld.exe -- (CWS_MySQL_3306)
SRV - [2005.10.09 19:17:00 | 000,020,541 | ---- | M] (Apache Software Foundation) [Disabled | Stopped] -- C:\PHPWebServer\apache\bin\apache.exe -- (CWS_Apache_80)
SRV - [2004.06.10 16:20:12 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC)


========== Driver Services (SafeList) ==========

DRV - [2009.08.05 22:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2008.06.24 13:35:16 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.04.13 20:53:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.13 18:36:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2008.03.27 09:15:40 | 000,502,368 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2008.03.17 11:03:46 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008.02.25 18:34:52 | 000,017,480 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2006.07.31 14:34:30 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2006.05.04 04:13:52 | 004,271,616 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.03.08 09:49:20 | 001,506,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.02.21 13:12:02 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006.02.01 12:29:12 | 000,102,784 | ---- | M] (Option NV) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Gtm51Irp.sys -- (GTMNDISIRPXP)
DRV - [2006.02.01 12:29:08 | 000,021,760 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtmserusb.sys -- (GTMSERUSB)
DRV - [2006.02.01 12:29:04 | 000,025,472 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtmmdmusb.sys -- (GTMMDMUSB)
DRV - [2006.01.25 14:50:40 | 000,016,000 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtffbus.sys -- (GTFFBUS)
DRV - [2006.01.24 10:45:56 | 000,034,944 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipswuio.sys -- (ipswuio)
DRV - [2006.01.19 23:44:42 | 000,862,340 | R--- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2006.01.18 05:41:58 | 000,080,512 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005.12.22 15:30:46 | 000,005,120 | ---- | M] (option) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GtVUsb.sys -- (GtVUsb)
DRV - [2005.11.03 16:40:08 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.10.21 02:13:08 | 000,191,936 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2005.10.03 10:26:36 | 000,720,470 | ---- | M] (Syntek America Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynMini.sys -- (SynMini)
DRV - [2005.10.03 10:26:14 | 000,008,278 | ---- | M] (Syntek America Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynScan.sys -- (SynScan)
DRV - [2005.09.01 19:54:26 | 000,032,000 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtf32bus.sys -- (GTF32BUS)
DRV - [2005.09.01 19:54:12 | 000,007,936 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtptser.sys -- (GTPTSER)
DRV - [2005.08.29 17:45:24 | 000,018,944 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtscser.sys -- (GTSCSER)
DRV - [2005.08.10 14:44:06 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.07.14 12:14:34 | 000,027,904 | ---- | M] (REDC) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\risdptsk.sys -- (risdptsk)
DRV - [2005.07.12 19:00:30 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2005.05.16 15:20:40 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.02.17 10:07:48 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2005.02.11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004.10.15 12:50:20 | 000,015,295 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BrScnUsb.sys -- (BrScnUsb)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.05.27 22:13:04 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\ATK0100\ASNDIS5.sys -- (ASNDIS5)
DRV - [2003.08.04 15:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - [2003.07.29 15:43:44 | 001,257,418 | ---- | M] (WIDCOMM, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2003.07.03 09:33:58 | 000,053,083 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBSNX2K.SYS -- (USBSNXSTOR)
DRV - [2003.07.01 12:29:10 | 000,022,183 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
DRV - [2003.07.01 12:28:46 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
DRV - [2003.01.17 03:59:56 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\DRIVERS\papycpu2.sys -- (papycpu2)
DRV - [2003.01.17 03:59:56 | 000,001,856 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\DRIVERS\papyjoy.sys -- (papyjoy)
DRV - [2001.08.17 21:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://www.google.com
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/result ... EF&v=18&q="
FF - prefs.js..browser.search.order.1: "Fast Browser Search"
FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.4.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}:2.2.3
FF - prefs.js..keyword.URL: "http://www.fastbrowsersearch.com/result ... 1CEE4F}&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2008.01.19 13:28:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2008.01.19 13:28:10 | 000,000,000 | ---D | M]

[2008.09.07 16:57:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2009.11.08 13:27:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions\celtx@celtx.com
[2008.01.19 13:28:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions
[2008.03.03 12:40:28 | 000,000,000 | ---D | M] (Eurotran XP) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{133ff231-455f-48fb-aeb6-f57292db5b56}
[2009.08.10 13:26:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.01.10 19:21:00 | 000,000,000 | ---D | M] (SwitchProxy Tool) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{27A2FD41-CB23-4518-AB5C-C25BAFFDE531}
[2009.08.05 21:56:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.09.15 20:18:54 | 000,000,000 | ---D | M] (My Tattoons (Fast Browser Search)) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}
[2009.07.04 09:08:44 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\qipsearch.xml
[2010.04.28 19:44:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-60.xml
[2008.04.26 19:33:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-61.xml
[2008.05.09 08:33:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-62.xml
[2008.05.09 08:46:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-63.xml
[2008.05.09 08:58:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-64.xml
[2008.05.15 13:36:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-65.xml
[2008.05.15 14:41:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-66.xml
[2008.07.06 14:47:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-67.xml
[2008.07.14 11:00:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-68.xml
[2008.07.14 15:25:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-69.xml
[2008.07.16 17:47:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-70.xml
[2008.07.18 20:05:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-71.xml
[2008.07.23 19:07:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-72.xml
[2008.09.03 15:30:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-73.xml
[2008.09.03 15:47:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-74.xml
[2008.09.04 16:35:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-75.xml
[2008.09.04 17:02:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-76.xml
[2008.09.06 15:59:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-77.xml
[2009.08.06 13:08:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-78.xml
[2009.09.12 23:10:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-79.xml
[2008.03.04 20:03:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-8.xml
[2008.03.06 17:12:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-1.xml
[2008.03.07 19:40:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-9.xml
[2008.03.14 10:30:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-2.xml
[2008.03.16 17:03:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-10.xml
[2008.03.16 18:08:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-11.xml
[2008.03.16 18:13:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-12.xml
[2008.03.16 18:24:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-13.xml
[2008.03.17 13:40:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-14.xml
[2008.03.17 13:45:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-15.xml
[2008.03.17 16:21:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-16.xml
[2008.03.17 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-17.xml
[2008.03.17 19:34:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-18.xml
[2008.03.17 19:54:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-19.xml
[2008.03.17 20:53:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-20.xml
[2008.03.18 15:02:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-21.xml
[2008.03.18 16:14:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-22.xml
[2008.03.18 17:26:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-23.xml
[2008.03.21 16:29:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-3.xml
[2008.03.27 14:03:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-24.xml
[2008.02.19 18:16:46 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin.xml
[2008.03.27 15:08:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-25.xml
[2008.03.28 19:45:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-26.xml
[2008.03.29 14:52:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-4.xml
[2008.04.03 17:18:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-27.xml
[2008.04.03 19:24:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-28.xml
[2008.04.04 13:32:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-29.xml
[2008.04.05 17:59:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-5.xml
[2008.04.08 13:57:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-30.xml
[2008.04.08 14:03:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-31.xml
[2008.04.08 15:12:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-32.xml
[2008.04.08 19:38:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-33.xml
[2008.04.09 14:15:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-34.xml
[2008.04.09 14:40:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-35.xml
[2008.04.09 15:37:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-36.xml
[2008.04.09 15:52:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-37.xml
[2008.04.09 16:15:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-38.xml
[2008.04.09 21:40:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-39.xml
[2008.04.10 15:43:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-40.xml
[2008.04.10 20:42:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-41.xml
[2008.04.11 08:51:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-42.xml
[2008.04.14 12:44:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-6.xml
[2008.04.14 15:25:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-43.xml
[2008.04.14 16:38:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-44.xml
[2008.04.14 17:46:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-45.xml
[2008.04.17 19:50:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-46.xml
[2008.04.18 09:36:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-47.xml
[2008.04.18 11:24:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-48.xml
[2008.04.18 12:54:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-49.xml
[2008.04.18 15:27:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-50.xml
[2008.04.18 16:13:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-51.xml
[2008.04.18 19:44:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-52.xml
[2008.04.19 13:57:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-53.xml
[2008.04.20 16:19:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-54.xml
[2008.04.20 18:39:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-55.xml
[2008.04.21 09:34:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-56.xml
[2008.04.21 13:09:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-57.xml
[2008.04.21 13:29:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-58.xml
[2008.04.21 17:17:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-59.xml
[2008.04.22 08:32:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-7.xml
[2008.01.19 13:28:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.04.03 21:38:58 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.04.03 21:38:58 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.04.03 21:38:58 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.04.03 21:38:58 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.04.03 21:38:58 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
[2009.09.15 20:19:02 | 000,003,700 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.png
[2009.09.15 20:19:06 | 000,001,963 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.xml

O1 HOSTS File: ([2008.07.25 08:32:10 | 000,001,274 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 msdarkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.or
O1 - Hosts: 127.0.0.1 http://darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.or
O1 - Hosts: 127.0.0.1 darkcheats.or
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.dark.de
O1 - Hosts: 127.0.0.1 http://dark.de
O1 - Hosts: 14 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - No CLSID value found.
O2 - BHO: (no name) - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - No CLSID value found.
O2 - BHO: (no name) - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - No CLSID value found.
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (no name) - {9C8A568E-4201-478a-8536-526CF371D2E2} - No CLSID value found.
O2 - BHO: (rightonadz browser optimizer) - {b9b2c59b-8841-60b2-6042-c2e4108047ae} - C:\WINDOWS\System32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll File not found
O2 - BHO: (no name) - {c900b400-cdfe-11d3-976a-00e02913a9e0} - No CLSID value found.
O2 - BHO: (no name) - {DDFA1356-E6ED-42a5-9D62-93211D424A90} - No CLSID value found.
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (Morpheus Toolbar) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (Morpheus Toolbar) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.EXE (ASYSTeK Computer INC.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ASUS Live Update] File not found
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()
O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [nod32kui] C:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [USB Disk Tool] C:\Program Files\USB Disk Tool\USNDISKT.exe ( )
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe ()
O4 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKLM..\RunOnce: [NSSInstallation] C:\WINDOWS\System32\Adobe\Shockwave 11\nssstub.exe (Symantec Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe File not found
O4 - HKU\S-1-5-18..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000043 - C:\WINDOWS\System32\imon.dll (Eset )
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {33288993-5664-11D4-8B5B-00D0B73B3518} http://www.easports.com/downloads/games ... /ieell.cab (ell Class)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} http://www.ea.com/downloads/rtpatch/EARTPX.cab (EARTPatchX Class)
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} http://launch.gamespyarcade.com/softwar ... launch.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.07.31 14:02:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{00cf30ba-5b01-11dd-b14b-bad0beefface}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\{01ca2e30-a087-11de-b2e1-001731f56978}\Shell - "" = AutoRun
O33 - MountPoints2\{01ca2e30-a087-11de-b2e1-001731f56978}\Shell\AutoRun\command - "" = G:\seamlessKeyLauncher.exe -- File not found
O33 - MountPoints2\{44805116-77d4-11db-abd5-bad0beefface}\Shell\AutoRun\command - "" = F:\setup.exe -- File not found
O33 - MountPoints2\{5a892aa4-cebd-11dd-b245-d9eac43aacba}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\{5a892aa5-cebd-11dd-b245-d9eac43aacba}\Shell\AutoRun\command - "" = setupSNK.exe
O33 - MountPoints2\{9151642e-7562-11de-b2cd-001731dcabe5}\Shell - "" = AutoRun
O33 - MountPoints2\{9151642e-7562-11de-b2cd-001731dcabe5}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{9f1bb1d0-8bd9-11de-b2d9-001731dcabe5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f1bb1d0-8bd9-11de-b2d9-001731dcabe5}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{b8227148-8a6a-11de-b2d8-001731f56978}\Shell - "" = AutoRun
O33 - MountPoints2\{b8227148-8a6a-11de-b2d8-001731f56978}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{fcc0070e-cec0-11dd-b246-001731f56978}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2006.07.31 13:51:26 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\Iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.asv2 - C:\WINDOWS\System32\ASUSASV2.DLL ()
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\Ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\Ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\Ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MP42 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: VIDC.MPG4 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: VIDC.YVU9 - C:\WINDOWS\System32\Iyvu9_32.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)

========== Files/Folders - Created Within 30 Days ==========

[2010.06.05 18:41:11 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2010.06.05 18:27:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2010.06.05 18:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010.06.05 18:10:48 | 003,165,824 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\user\Plocha\ccleaner.exe
[2010.06.05 17:25:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.06.05 17:25:45 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.05 16:40:42 | 000,679,565 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\user\Plocha\ccsetup232.exe
[2010.05.31 20:37:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2010.05.20 15:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.05.20 12:18:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Data aplikací\free-downloads.net
[2010.05.08 14:51:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\COWON
[2010.05.08 14:42:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\COWON
[2010.05.08 14:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\JetAudio
[2010.05.08 13:20:44 | 032,874,791 | ---- | C] (Macrovision Corporation) -- C:\Documents and Settings\user\Plocha\JAD8005_BASIC.exe
[2006.10.25 19:30:58 | 000,053,083 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\USBSNX2K.SYS
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 05 čer 2010 18:09
od gogy27
========== Files - Modified Within 30 Days ==========

[2010.06.05 18:46:48 | 000,005,800 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184631.reg
[2010.06.05 18:46:00 | 000,722,270 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184512.reg
[2010.06.05 18:44:10 | 001,003,674 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184121.reg
[2010.06.05 18:42:38 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2010.06.05 18:20:20 | 000,001,452 | ---- | M] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.06.05 18:19:16 | 003,165,824 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\user\Plocha\ccleaner.exe
[2010.06.05 17:54:16 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.05 17:24:58 | 000,824,681 | ---- | M] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2010.06.05 17:07:44 | 000,679,565 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\user\Plocha\ccsetup232.exe
[2010.06.05 16:54:24 | 000,000,665 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.05 16:54:24 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.06.05 16:54:24 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2010.06.04 16:20:24 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010.06.04 15:54:08 | 000,000,996 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.03 21:11:24 | 000,002,154 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Google Chrome.lnk
[2010.06.03 21:10:28 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2145271908-1465603126-2461060743-1005Core1cac6d64cfd958e.job
[2010.06.01 16:04:10 | 000,000,382 | ---- | M] () -- C:\WINDOWS\tasks\NSSstub.job
[2010.06.01 15:59:34 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.01 15:54:42 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.01 15:54:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.01 15:54:30 | 402,051,072 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.01 15:35:36 | 000,001,244 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010.05.31 19:15:36 | 009,437,184 | -H-- | M] () -- C:\Documents and Settings\user\NTUSER.DAT
[2010.05.30 21:29:38 | 000,002,275 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Skype.lnk
[2010.05.30 11:49:14 | 068,188,554 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Veselo.rar
[2010.05.25 22:45:10 | 000,686,832 | ---- | M] () -- C:\Documents and Settings\user\Plocha\Kvantova fyzika.pdf
[2010.05.20 16:12:40 | 000,000,048 | ---- | M] () -- C:\WINDOWS\APCBT.ini
[2010.05.20 15:24:16 | 000,000,019 | ---- | M] () -- C:\WINDOWS\Sierra.ini
[2010.05.20 12:26:04 | 000,030,184 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.05.20 12:24:18 | 001,428,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.05.20 12:21:52 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2010.05.20 12:21:40 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\user\ntuser.ini
[2010.05.16 13:27:14 | 019,760,173 | ---- | M] () -- C:\Documents and Settings\user\Plocha\The_Secret___Rhonda_Byrne__-tajemstvi-cz-ekniha.pdf
[2010.05.12 11:21:16 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2010.05.11 17:59:36 | 000,038,400 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\organizacia_studia.doc
[2010.05.11 17:50:46 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\pk_drs_2010.doc
[2010.05.10 16:13:38 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.05.08 14:45:06 | 000,001,400 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\COWON Media Center - jetAudio.lnk
[2010.05.08 13:29:06 | 032,874,791 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\user\Plocha\JAD8005_BASIC.exe
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.06.05 18:46:33 | 000,005,800 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184631.reg
[2010.06.05 18:45:16 | 000,722,270 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184512.reg
[2010.06.05 18:41:25 | 001,003,674 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\cc_20100605_184121.reg
[2010.06.05 18:20:18 | 000,001,452 | ---- | C] () -- C:\Documents and Settings\user\Plocha\CCleaner.lnk
[2010.06.05 17:23:01 | 000,824,681 | ---- | C] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2010.05.30 11:42:44 | 068,188,554 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Veselo.rar
[2010.05.25 22:45:07 | 000,686,832 | ---- | C] () -- C:\Documents and Settings\user\Plocha\Kvantova fyzika.pdf
[2010.05.20 15:38:33 | 000,001,000 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.20 15:38:31 | 000,000,996 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.20 14:25:56 | 019,760,173 | ---- | C] () -- C:\Documents and Settings\user\Plocha\The_Secret___Rhonda_Byrne__-tajemstvi-cz-ekniha.pdf
[2010.05.11 17:59:33 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\organizacia_studia.doc
[2010.05.11 17:50:12 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\pk_drs_2010.doc
[2010.05.08 14:45:04 | 000,001,400 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\COWON Media Center - jetAudio.lnk
[2010.04.29 17:03:50 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2010.04.29 17:03:46 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2010.04.29 17:00:42 | 000,000,019 | ---- | C] () -- C:\WINDOWS\Sierra.ini
[2009.07.03 12:58:29 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.05.30 13:04:05 | 000,000,080 | RHS- | C] () -- C:\WINDOWS\System32\DD5A413DC0.dll
[2008.12.27 20:43:22 | 001,163,264 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll
[2008.12.15 16:41:55 | 000,000,048 | ---- | C] () -- C:\WINDOWS\APCBT.ini
[2008.12.12 19:29:15 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008.12.07 10:32:01 | 000,000,426 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2008.12.07 10:24:53 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BROSNMP.DLL
[2008.12.07 10:21:40 | 000,027,019 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2008.12.06 11:45:52 | 000,000,470 | ---- | C] () -- C:\WINDOWS\canasta.ini
[2008.06.02 15:26:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\musicmaker.INI
[2008.06.02 15:16:09 | 000,000,321 | ---- | C] () -- C:\WINDOWS\BeatBox.INI
[2008.06.02 15:11:30 | 000,038,912 | ---- | C] () -- C:\WINDOWS\System32\mgxasio.dll
[2008.06.02 15:08:27 | 000,005,729 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2008.02.24 10:17:30 | 000,000,011 | ---- | C] () -- C:\WINDOWS\hpclj3600g.ini
[2008.02.24 10:16:54 | 000,000,011 | ---- | C] () -- C:\WINDOWS\hpclj3600m.ini
[2008.02.24 10:16:26 | 000,000,011 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2008.02.24 10:16:21 | 000,000,011 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2008.02.15 13:51:07 | 000,000,031 | ---- | C] () -- C:\WINDOWS\bluevoda.ini
[2008.02.14 16:01:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PHPRunner.INI
[2008.02.01 10:27:21 | 000,003,115 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2007.09.27 08:59:30 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.09.03 14:22:06 | 000,000,461 | ---- | C] () -- C:\WINDOWS\EAGRAPH.INI
[2007.08.17 23:38:16 | 000,000,175 | ---- | C] () -- C:\WINDOWS\CIV.INI
[2007.02.23 14:13:45 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2006.12.03 11:42:35 | 000,000,088 | ---- | C] () -- C:\WINDOWS\STXKBD32.INI
[2006.12.03 11:41:30 | 000,000,028 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2006.12.03 11:40:13 | 000,005,228 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2006.12.03 11:40:10 | 000,002,864 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2006.11.03 19:06:10 | 000,001,244 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2006.10.25 19:30:59 | 000,032,768 | ---- | C] () -- C:\WINDOWS\UMSDIH.DLL
[2006.10.16 17:06:49 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.07.31 14:34:05 | 000,006,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASLM75.SYS
[2006.07.31 14:32:00 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56spn.dll
[2006.07.31 14:32:00 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56itl.dll
[2006.07.31 14:32:00 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56eng.dll
[2006.07.31 14:32:00 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56brz.dll
[2006.07.31 14:32:00 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56ger.dll
[2006.07.31 14:32:00 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56fra.dll
[2006.07.31 14:32:00 | 000,053,248 | R--- | C] () -- C:\WINDOWS\sm56jpn.dll
[2006.07.31 14:32:00 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56cht.dll
[2006.07.31 14:32:00 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56chs.dll
[2006.07.31 14:20:37 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006.07.31 08:37:27 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006.01.02 21:16:32 | 000,000,010 | ---- | C] () -- C:\WINDOWS\System32\ABLKSR.ini
[2005.02.17 10:07:48 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004.11.20 11:15:21 | 000,007,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\MMIOPORT.SYS
[2004.11.20 11:15:21 | 000,002,538 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2004.10.11 11:19:00 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\ASUSASV2.DLL
[2003.07.29 16:03:48 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\btsendto_ie.dll
[2003.07.29 16:02:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\btsendto_wab.dll
[2003.07.29 15:56:42 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2003.07.01 12:29:10 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
[2002.05.15 23:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2002.03.04 10:16:34 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll
[2002.02.27 17:50:00 | 000,197,120 | ---- | C] () -- C:\WINDOWS\System32\patchw32.dll
[2001.11.23 18:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========

[2006.11.23 18:49:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avg7
[2007.03.27 17:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCap
[2007.05.24 15:01:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NFS Underground
[2008.07.22 15:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Mediaware
[2008.12.07 10:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ScanSoft
[2009.07.03 15:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\65-55-55-55-55-55
[2009.07.03 15:22:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\r2-97-46-2p-55-55
[2009.10.02 16:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2006.11.23 18:55:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVG7
[2006.10.15 18:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQLite
[2006.10.15 18:15:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar
[2006.11.23 18:55:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AVG7
[2007.04.27 19:29:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2007.06.04 15:21:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FlashFXP
[2007.08.03 18:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sachy
[2007.09.19 19:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DMCache
[2008.01.25 12:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Web Page Maker V2
[2008.02.14 13:49:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\gtk-2.0
[2008.02.18 13:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PHP Designer 2007
[2008.03.15 18:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\HLSW
[2008.03.23 11:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Dev-Cpp
[2008.03.27 17:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Simple Star
[2008.04.16 17:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GetRight
[2008.05.17 12:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\LimeWire
[2008.06.24 13:35:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2008.08.10 19:45:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\fltk.org
[2008.09.06 17:56:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Desktopicon
[2008.10.28 18:22:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2008.12.11 14:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2008.12.12 12:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Atari
[2009.03.04 18:54:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\TeamViewer
[2009.05.30 13:06:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DJJava
[2009.05.31 14:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\1'st ZipCommander
[2009.07.30 21:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\My Games
[2009.10.02 17:20:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Blender Foundation
[2010.02.18 22:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Video Converter for Any Flv Player
[2010.02.26 19:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Facebook
[2010.05.08 14:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\COWON
[2010.06.01 16:04:10 | 000,000,382 | ---- | M] () -- C:\WINDOWS\Tasks\NSSstub.job
[2010.06.04 16:20:24 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun -- [2008.04.01 11:39:48 | 000,486,856 | ---- | M] (DT Soft Ltd)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< c:\windows\*.* /U >
[2 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2003.08.29 15:13:04 | 001,435,648 | ---- | M] (Dominating Bytes Design) -- C:\TeamSpeak.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2006.07.31 14:08:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Symantec
[2006.07.31 14:03:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2006.07.31 13:56:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2006.08.16 20:52:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2006.08.23 11:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org2
[2006.10.13 21:45:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Skype
[2006.10.13 21:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Google
[2006.10.15 18:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQLite
[2006.10.15 18:15:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar
[2006.10.19 19:02:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2006.11.09 11:25:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Help
[2006.11.12 14:49:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AdobeUM
[2006.11.23 18:55:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AVG7
[2007.04.27 19:29:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2007.06.04 15:21:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FlashFXP
[2007.06.29 20:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sun
[2007.07.14 10:34:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\CyberLink
[2007.08.03 18:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sachy
[2007.09.19 19:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DMCache
[2007.09.27 12:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Hamachi
[2008.01.19 13:00:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\WinRAR
[2008.01.19 13:28:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2008.01.25 12:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Web Page Maker V2
[2008.01.31 20:39:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\InstallShield
[2008.02.14 13:49:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\gtk-2.0
[2008.02.18 13:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PHP Designer 2007
[2008.02.18 15:57:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PSpad
[2008.03.04 15:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\teamspeak2
[2008.03.15 18:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\HLSW
[2008.03.23 11:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Dev-Cpp
[2008.03.27 17:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Simple Star
[2008.03.28 13:34:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\skypePM
[2008.04.16 17:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GetRight
[2008.05.17 12:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\LimeWire
[2008.06.24 13:35:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2008.08.10 19:45:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\fltk.org
[2008.09.06 17:56:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Desktopicon
[2008.10.28 18:22:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2008.12.11 14:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2008.12.12 12:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Atari
[2009.01.09 21:24:50 | 000,000,000 | R--D | M] -- C:\Documents and Settings\user\Data aplikací\Brother
[2009.03.04 18:54:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\TeamViewer
[2009.05.30 13:06:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DJJava
[2009.05.31 14:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\1'st ZipCommander
[2009.07.30 21:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\My Games
[2009.10.02 17:20:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Blender Foundation
[2009.11.07 17:25:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Corel
[2010.02.18 22:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Video Converter for Any Flv Player
[2010.02.26 19:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Facebook
[2010.05.08 14:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\COWON

< %APPDATA%\*.exe /s >
[2008.05.15 13:40:34 | 019,900,192 | ---- | M] ( ) -- C:\Documents and Settings\user\Data aplikací\Adobe\Acrobat\7.0\Updater\AdbeRdr710_en_US.exe
[2010.02.26 19:47:10 | 000,050,354 | ---- | M] (Facebook, Inc.) -- C:\Documents and Settings\user\Data aplikací\Facebook\uninstall.exe
[2003.11.13 18:26:42 | 000,339,968 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar\ZVUKPROG\Zvukprog.exe
[2008.05.06 19:08:10 | 000,057,344 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{3293C06B-003F-4027-8380-FFD79E38167D}\ARPPRODUCTICON.exe
[2008.05.06 19:08:10 | 000,061,440 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{3293C06B-003F-4027-8380-FFD79E38167D}\NewShortcut2_3293C06B003F40278380FFD79E38167D_1.exe
[2008.05.06 19:08:10 | 000,065,536 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{3293C06B-003F-4027-8380-FFD79E38167D}\NewShortcut5_3293C06B003F40278380FFD79E38167D.exe
[2008.05.06 19:08:10 | 000,008,854 | R--- | M] () -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{3293C06B-003F-4027-8380-FFD79E38167D}\Uninstall_THAW_3293C06B003F40278380FFD79E38167D.exe
[2008.05.06 19:08:10 | 000,061,440 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\user\Data aplikací\Microsoft\Installer\{3293C06B-003F-4027-8380-FFD79E38167D}\NewShortcut3_3293C06B003F40278380FFD79E38167D.exe


< MD5 for: AGP440.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:AGP440.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:atapi.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: CDROM.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:cdrom.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.18 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 15:12:00 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:40 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:hal.dll
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.18 13:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:Changer.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.11.30 21:48:56 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.18 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.18 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.18 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
[2004.08.18 13:00:00 | 000,481,792 | ---- | M] (Microsoft Corporation) MD5=CB56F803D2CAF6B3F32E82D2F73F4B3A -- C:\WINDOWS\I386\SYSTEM32\SMSS.EXE

< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 13:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 12:45:14 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 18:20:56 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:36 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2008.05.09 11:56:14 | 000,430,080 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\vbscript.dll
[2008.04.14 05:21:42 | 000,380,445 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.06.24 13:35:16 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2006.07.31 13:55:30 | 000,462,848 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2006.07.31 13:55:30 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2006.07.31 13:55:30 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2008.05.09 11:56:14 | 000,430,080 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\vbscript.dll
[2008.04.14 05:21:42 | 000,380,445 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\expsrv.dll
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

========== Files - Unicode (All) ==========
[2006.10.26 15:51:10 | 000,000,000 | ---D | M](C:\Documents and Settings\user\Data aplikac?acromedia) -- C:\Documents and Settings\user\Data aplikac�acromedia
(C:\Documents and Settings\user\Data aplikac?acromedia) -- C:\Documents and Settings\user\Data aplikac�acromedia
< End of report >

:arrow: Extras mi nevytvorilo

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 06 čer 2010 19:39
od vyosek
Zdravim,
jsem dnes cely den mimo z rodinnych duvodu - na log kouknu zitra navecer!
Dekuji za pochopeni...

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 07 čer 2010 17:24
od vyosek
Zdravim,
omlouvam se za me zpozdeni a dekuji za trpelivost a pochopeni...
:arrow: Tyhle slozky znate :???:
C:\Documents and Settings\All Users\Data aplikací\65-55-55-55-55-55
C:\Documents and Settings\All Users\Data aplikací\r2-97-46-2p-55-55

:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\URLSearchHook: {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q="
FF - prefs.js..browser.search.order.1: "Fast Browser Search"
FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search"
FF - prefs.js..keyword.URL: "http://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=18&tid={CAAA3CBF-958B-CE76-813C-7687441CEE4F}&q="
[2009.07.04 09:08:44 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\qipsearch.xml
[2010.04.28 19:44:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-60.xml
[2008.04.26 19:33:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-61.xml
[2008.05.09 08:33:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-62.xml
[2008.05.09 08:46:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-63.xml
[2008.05.09 08:58:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-64.xml
[2008.05.15 13:36:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-65.xml
[2008.05.15 14:41:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-66.xml
[2008.07.06 14:47:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-67.xml
[2008.07.14 11:00:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-68.xml
[2008.07.14 15:25:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-69.xml
[2008.07.16 17:47:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-70.xml
[2008.07.18 20:05:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-71.xml
[2008.07.23 19:07:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-72.xml
[2008.09.03 15:30:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-73.xml
[2008.09.03 15:47:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-74.xml
[2008.09.04 16:35:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-75.xml
[2008.09.04 17:02:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-76.xml
[2008.09.06 15:59:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-77.xml
[2009.08.06 13:08:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-78.xml
[2009.09.12 23:10:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-79.xml
[2008.03.04 20:03:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-8.xml
[2008.03.06 17:12:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-1.xml
[2008.03.07 19:40:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-9.xml
[2008.03.14 10:30:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-2.xml
[2008.03.16 17:03:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-10.xml
[2008.03.16 18:08:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-11.xml
[2008.03.16 18:13:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-12.xml
[2008.03.16 18:24:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-13.xml
[2008.03.17 13:40:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-14.xml
[2008.03.17 13:45:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-15.xml
[2008.03.17 16:21:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-16.xml
[2008.03.17 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-17.xml
[2008.03.17 19:34:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-18.xml
[2008.03.17 19:54:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-19.xml
[2008.03.17 20:53:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-20.xml
[2008.03.18 15:02:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-21.xml
[2008.03.18 16:14:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-22.xml
[2008.03.18 17:26:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-23.xml
[2008.03.21 16:29:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-3.xml
[2008.03.27 14:03:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-24.xml
[2008.02.19 18:16:46 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin.xml
[2008.03.27 15:08:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-25.xml
[2008.03.28 19:45:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-26.xml
[2008.03.29 14:52:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-4.xml
[2008.04.03 17:18:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-27.xml
[2008.04.03 19:24:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-28.xml
[2008.04.04 13:32:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-29.xml
[2008.04.05 17:59:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-5.xml
[2008.04.08 13:57:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-30.xml
[2008.04.08 14:03:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-31.xml
[2008.04.08 15:12:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-32.xml
[2008.04.08 19:38:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-33.xml
[2008.04.09 14:15:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-34.xml
[2008.04.09 14:40:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-35.xml
[2008.04.09 15:37:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-36.xml
[2008.04.09 15:52:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-37.xml
[2008.04.09 16:15:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-38.xml
[2008.04.09 21:40:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-39.xml
[2008.04.10 15:43:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-40.xml
[2008.04.10 20:42:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-41.xml
[2008.04.11 08:51:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-42.xml
[2008.04.14 12:44:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-6.xml
[2008.04.14 15:25:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-43.xml
[2008.04.14 16:38:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-44.xml
[2008.04.14 17:46:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-45.xml
[2008.04.17 19:50:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-46.xml
[2008.04.18 09:36:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-47.xml
[2008.04.18 11:24:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-48.xml
[2008.04.18 12:54:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-49.xml
[2008.04.18 15:27:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-50.xml
[2008.04.18 16:13:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-51.xml
[2008.04.18 19:44:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-52.xml
[2008.04.19 13:57:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-53.xml
[2008.04.20 16:19:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-54.xml
[2008.04.20 18:39:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-55.xml
[2008.04.21 09:34:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-56.xml
[2008.04.21 13:09:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-57.xml
[2008.04.21 13:29:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-58.xml
[2008.04.21 17:17:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-59.xml
[2008.04.22 08:32:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-7.xml
[2009.09.15 20:19:02 | 000,003,700 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.png
[2009.09.15 20:19:06 | 000,001,963 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.xml
O2 - BHO: (no name) - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - No CLSID value found.
O2 - BHO: (no name) - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - No CLSID value found.
O2 - BHO: (no name) - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - No CLSID value found.
O2 - BHO: (no name) - {9C8A568E-4201-478a-8536-526CF371D2E2} - No CLSID value found.
O2 - BHO: (no name) - {c900b400-cdfe-11d3-976a-00e02913a9e0} - No CLSID value found.
O2 - BHO: (no name) - {DDFA1356-E6ED-42a5-9D62-93211D424A90} - No CLSID value found.
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (Morpheus Toolbar) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [ASUS Live Update] File not found
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} http://launch.gamespyarcade.com/softwar ... launch.cab (Reg Error: Key error.)
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->  ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

:reg
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fcc0070e-cec0-11dd-b246-001731f56978}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 15:49
od gogy27
:arrow: tie subory nepoznam a ani neviem sa ku nim dostat...co s nimi?
:arrow: textovy subor ktory sa mi vytvoril z OTL:

All processes killed
========== OTL ==========
HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\{95289393-33EA-4F8D-B952-483415B9C955} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ not found.
Registry value HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\{D73F49B6-B51B-4d32-A3B7-BD04B8342F53} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D73F49B6-B51B-4d32-A3B7-BD04B8342F53}\ not found.
Prefs.js: "Fast Browser Search" removed from browser.search.defaultenginename
Prefs.js: "http://www.fastbrowsersearch.com/result ... EF&v=18&q=" removed from browser.search.defaulturl
Prefs.js: "Fast Browser Search" removed from browser.search.order.1
Prefs.js: "Fast Browser Search" removed from browser.search.selectedEngine
Prefs.js: "http://www.fastbrowsersearch.com/result ... 1CEE4F}&q=" removed from keyword.URL
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\qipsearch.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-60.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-61.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-62.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-63.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-64.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-65.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-66.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-67.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-68.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-69.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-70.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-71.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-72.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-73.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-74.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-75.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-76.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-77.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-78.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-79.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-34.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-35.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-36.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-37.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-38.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-39.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-40.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-41.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-42.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-43.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-44.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-45.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-46.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-47.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-48.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-49.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-50.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-51.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-52.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-53.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-54.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-55.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-56.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-57.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-58.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-59.xml moved successfully.
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\fast.png moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\fast.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D39A900-0F3A-4C29-A254-3E65244FDC34}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0D39A900-0F3A-4C29-A254-3E65244FDC34}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1648E328-3E5A-4EA5-A9C6-E5F09EE272DA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1648E328-3E5A-4EA5-A9C6-E5F09EE272DA}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D8282E6-BC4F-469B-AAED-7E4FF077AD93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1D8282E6-BC4F-469B-AAED-7E4FF077AD93}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9C8A568E-4201-478a-8536-526CF371D2E2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9C8A568E-4201-478a-8536-526CF371D2E2}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c900b400-cdfe-11d3-976a-00e02913a9e0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c900b400-cdfe-11d3-976a-00e02913a9e0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DDFA1356-E6ED-42a5-9D62-93211D424A90}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DDFA1356-E6ED-42a5-9D62-93211D424A90}\ not found.
Registry value HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ASUS Live Update deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Starting removal of ActiveX control {33564D57-0000-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\WMV9VCM.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}\ not found.
C:\WINDOWS\System32\SETEDA6.tmp deleted successfully.
C:\WINDOWS\System32\SETEDAE.tmp deleted successfully.
C:\WINDOWS\System32\SETEDAF.tmp deleted successfully.
C:\WINDOWS\System32\SETEDB7.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\S2639A1B1.tmp deleted successfully.
C:\WINDOWS\002711_.tmp deleted successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fcc0070e-cec0-11dd-b246-001731f56978}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fcc0070e-cec0-11dd-b246-001731f56978}\ not found.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G\ deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 9820329 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 88691 bytes
->Temporary Internet Files folder emptied: 164647 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: user
->Temp folder emptied: 4523898888 bytes
->Temporary Internet Files folder emptied: 10809925 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 809737604 bytes
->Google Chrome cache emptied: 65033496 bytes
->Flash cache emptied: 2674 bytes

User: WEBy

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 144175239 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 191888151 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 177720 bytes

Total Files Cleaned = 5 489,00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService

User: LocalService

User: user
->Flash cache emptied: 0 bytes

User: WEBy

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

OTL by OldTimer - Version 3.2.5.3 log created on 06082010_162951

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\E not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\% not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\' not found!
Folder move failed. C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 16:08
od vyosek
:arrow: Soubory smaznem pres OTL - zrejme jste se k nim nedostal pokud jsou skryte (Moznosti slozky - zobrazovat skryte soubory)
:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
[2009.07.03 15:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\65-55-55-55-55-55
[2009.07.03 15:22:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\r2-97-46-2p-55-55

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 16:35
od gogy27
All processes killed
========== OTL ==========
C:\Documents and Settings\All Users\Data aplikací\65-55-55-55-55-55 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\r2-97-46-2p-55-55 folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 888 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: user
->Temp folder emptied: 730662 bytes
->Temporary Internet Files folder emptied: 2582669 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 753106959 bytes
->Google Chrome cache emptied: 7132962 bytes
->Flash cache emptied: 568 bytes

User: WEBy

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1464 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 728,00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService

User: LocalService

User: user
->Flash cache emptied: 0 bytes

User: WEBy

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

OTL by OldTimer - Version 3.2.5.3 log created on 06082010_172333

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\E not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\% not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ not found!
File\Folder C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\' not found!
Folder move failed. C:\Documents and Settings\user\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\dwdta3hj.default\Cache.Trash\Trash\Cache\ scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 16:53
od vyosek
:arrow: Jak se chova PC :???:

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 19:23
od gogy27
:arrow: da sa povedat ze momentalne ziaden problem...aj celkom plynule ide, ale internetu to moc nepomohlo, cize asi to bude problem niekde inde
:arrow: inac mi tam vypisovalo errori s niektorymi .tmp subormi (nevedel precitat alebo nieco take)

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 08 čer 2010 23:03
od vyosek
Jeste nezoufejte, nejsme s testy u konce :)

:arrow: Odinstalujte vsechny emulatory virtualnich jednotek (Deamon Tools, Alcohol 120%, PowerISO apod)

:arrow: Stahnete SPTD http://www.duplexsecure.com/en/downloads
  • Vyberte z uvedene stranky verzi dle sveho operacniho systemu (32(x86)bit ci 64(x64)bit)
  • Ulozte na plochu a spustte
  • Zvolte moznost Uninstall a restartujte PC - pokud nepujde kliknout (tlacitko bude sede), krok preskocte
:arrow: Stahnete Defogger http://www.jpshortstuff.247fixes.com/Defogger.exe
  • Ulozte na plochu a spustte
  • Kliknete na Disable a restartujte PC - pokud nepujde kliknout (tlacitko bude sede), krok preskocte
:arrow: Stahnete MBR na plochu http://www2.gmer.net/mbr/mbr.exe

:arrow: Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R
  • Vyskoci na Vas okenko, do ktereho zkopirujte text nize

  • Kód: Vybrat vše

    "%userprofile%\plocha\mbr" -t
  • Kliknete na OK
  • Na plose se Vam vytvori log s nazvem mbr.txt, jeho obsah mi sem vlozte
:arrow: Dejte log z Gmer - viz muj podpis

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 10 čer 2010 16:15
od gogy27
:arrow: emulatory odinstalovane ale po Alcohole 120% zostalo zopar suborov ktore nejdu vymazat
:arrow: program SPTD hned po spusteni vypisal chybovu hlasku: neni platna aplikace typu Win32
:arrow: mbr.txt

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll sfsync02.sys atapi.sys pciide.sys
kernel: MBR read successfully
user & kernel MBR OK
:arrow: GMER:

:arrow: GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-06-10 17:04:00
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\user\LOCALS~1\Temp\kwporkow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Tcpip \Device\Tcp fssfltr_tdi.sys (Family Safety Filter Driver (TDI)/Microsoft Corporation)

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 sfsync02.sys (StarForce Protection Synchronization Driver/Protection Technology)
Device \Driver\atapi \Device\Ide\IdePort0 sfsync02.sys (StarForce Protection Synchronization Driver/Protection Technology)
Device \Driver\atapi \Device\Ide\IdePort1 sfsync02.sys (StarForce Protection Synchronization Driver/Protection Technology)
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-e sfsync02.sys (StarForce Protection Synchronization Driver/Protection Technology)

AttachedDevice \FileSystem\Fastfat \Fat amon.sys (Amon monitor/Eset )

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3@0016b89f9450 0x0F 0x68 0x7F 0x68 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3@001b59ad9d66 0x81 0xEB 0xDD 0x9B ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3@001fe4ac6962 0xCC 0x47 0x23 0x46 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3@0023f10da543 0x7D 0xFB 0x87 0x68 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000461840cb3@002548ab29d5 0xC7 0xA9 0x28 0x84 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xBB 0xCA 0x3D 0x64 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xB0 0xD8 0xDF 0x2B ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3@0016b89f9450 0x0F 0x68 0x7F 0x68 ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3@001b59ad9d66 0x81 0xEB 0xDD 0x9B ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3@001fe4ac6962 0xCC 0x47 0x23 0x46 ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3@0023f10da543 0x7D 0xFB 0x87 0x68 ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000461840cb3@002548ab29d5 0xC7 0xA9 0x28 0x84 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xBB 0xCA 0x3D 0x64 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 1
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xB0 0xD8 0xDF 0x2B ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xBB 0xCA 0x3D 0x64 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 1
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x9E 0x3A 0xB4 0x56 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x72 0x9F 0x31 0x0A ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xD6 0xCF 0x36 0x25 ...
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\ContentTypeSniffers\VideoFilesContentSniffer@RelPattern *.asf?*.avi?*.divx?*.mov?*.mpeg?*.mpg?*.ogm?*.qt?*.rm?*.wmv?*.mkv?*.vob?*.m1v?*.m2v?*.swf?*.fli?*.flc?*.flic?*.dat?*.mp4?*.mpe?*.3gp?*.3g2?*.ts?*.tp?*.trp?*.k3g?*.flv?*.m4v?*.mpg?VIDEO\*.mpg?*.

---- EOF - GMER 1.0.15 ----

:arrow: pocas scanu, resp. furt pri zapnuti google chrome mi spadol system (vyhodilo sa biele pozadie na nom biely text, asi nieco s malo fyzickej pamati alebo nieco take, a restartovalo system)

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 10 čer 2010 19:25
od vyosek
Log z gmeru je OK, mate velmi male ramky, proto Vam to pada...Doporucil bych navstevu servisu, at se podivaji jestli se daji vymenit za vetsi...System to nezvlada tak spadne...
Haveti to vsak neni, je problem v RAMce...

Re: prosim o kontrolu logu (dost zatrepany)

Napsal: 10 čer 2010 21:00
od gogy27
:arrow: no neviem ci sa da nieco s RAMkou v NB spravit ale popytam sa
:arrow: este jedna otazka pomimo....ako sa da rozbalit vo WinRare subor vacsi ako 4GB lebo pise furt nedostatok miesta na disku
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz