Stránka 1 z 1
Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 03 črc 2010 09:10
od danekvdv
Zdravím ve spolek.Pc systém winXp,Av AVG.Dostala se tam nějaká havět(Mwav při připojení k mému PC na tomoto disku našel 3 viry).Při startování winů to chtělo heslo administrátora,s pomocí návodu od Naughtyho(za což vřelé poděkovaní) se mi povedlo heslo změnit,teď je xp přijmou,pak vyskočí hláška co je v předmětu příspěvku,pak vyskočí hláška v nějaké marťanštině-nesmyslné znaky něco se přečíst dá(při každém restartu pokaždé chyba v /systém32.... pokaždé jiná napr/fonts,/ati.sys atakdále).Setkal se stím už někdo z Vás,nebo mě čaká reinstal winů?Předem moc děkuji.
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 03 črc 2010 11:07
od motji
Hezké odpoledne
Dostanete se aspon do nouzového režimu?
Obnovu systému jste zkoušel?
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 05 črc 2010 07:07
od danekvdv
Omlouvám se jsem teď přes svátky mimo net.Zapoměl jsem to napsat už v prvním příspěvku.Při pokusu o start v nouzovém režimu winy doběhnou po načitání nějakých sys souborů,pak se to restartne a najede to do startování klasického režimu.Ať zkouším start v jakémkoliv režimu.Vzorek se pokusím vytáhnout z Mwav,ale bude to až asi zítra,nejsem teď na svém PC.Zatím díky moc za snahu.
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 06 črc 2010 18:47
od danekvdv
Zdravím,omluva chvíli to trvalo(vadná flash) a z win7 ten postup vyvoření bootovací flash nefungovalo,musel jsem na PC s XP.Log z Otl přikládám ten extras.txt nebyl vytvořen.Zatím díky
OTL logfile created on: 7/6/2010 10:09:20 PM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,023.00 Mb Total Physical Memory | 826.00 Mb Available Physical Memory | 81.00% Memory free
907.00 Mb Paging File | 838.00 Mb Available in Paging File | 92.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.95 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.43% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
Using ControlSet: ControlSet003
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - ( ) - (Registry value not found)
O20 - HKLM Winlogon: UserInit - ( ) - (Registry value not found)
O20 - Winlogon\Notify\ahiykkyo: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cryptnet: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cscdll: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\ScCertProp: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\SensLogn: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní síť
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010/07/06 20:57:34 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/06 11:49:08 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/06 11:49:03 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/06 11:48:59 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/06 11:48:59 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/06 11:48:58 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/06 11:48:58 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,024,576 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
Invalid Environment Variable: %APPDATA%\*.
Invalid Environment Variable: %APPDATA%\*.exe
< MD5 for: AGP440.SYS >
[2006/03/02 08:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:AGP440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\agp440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006/03/02 08:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 16:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006/03/02 08:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
[2004/08/03 16:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008/04/13 23:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008/04/13 23:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\autochk.exe
[2008/04/13 23:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006/03/02 08:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: BEEP.SYS >
[2006/03/02 08:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2006/03/02 08:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys
< MD5 for: CDROM.SYS >
[2006/03/02 08:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:cdrom.sys
[2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cdrom.sys
[2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006/03/02 08:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CHANGER.SYS >
[2006/03/02 08:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:Changer.sys
[2008/04/13 14:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008/04/13 14:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\changer.sys
< MD5 for: CRYPTSVC.DLL >
[2006/03/02 08:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008/04/13 23:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008/04/13 23:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cryptsvc.dll
[2008/04/13 23:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: CSRSS.EXE >
[2006/03/02 08:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008/04/13 23:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008/04/13 23:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\csrss.exe
[2008/04/13 23:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe
< MD5 for: EVENTLOG.DLL >
[2008/04/13 23:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 23:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\eventlog.dll
[2008/04/13 23:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006/03/02 08:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008/04/13 23:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008/04/13 23:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\explorer.exe
[2006/03/02 08:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006/03/02 08:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:hal.dll
[2008/04/13 14:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008/04/13 14:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008/04/13 14:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\hal.dll
[2006/03/02 08:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: ISAPNP.SYS >
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2008/09/18 15:43:12 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\sp3.cab:isapnp.sys
[2001/10/24 05:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006/03/02 08:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008/04/13 22:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008/04/13 22:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\isapnp.sys
[2008/04/13 22:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006/03/02 08:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008/04/13 23:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008/04/13 23:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\lsass.exe
[2008/04/13 23:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008/04/13 15:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 15:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\ndis.sys
[2008/04/13 15:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006/03/02 08:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006/03/02 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008/04/13 23:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 23:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\netlogon.dll
[2008/04/13 23:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: PCIIDE.SYS >
[2001/10/24 05:52:28 | 000,003,328 | ---- | M] (Microsoft Corporation) MD5=2DA4EC85E0EA7A45C6B2A05820492D5A -- C:\WINDOWS\system32\dllcache\pciide.sys
[2001/10/24 05:52:28 | 000,003,328 | ---- | M] (Microsoft Corporation) MD5=2DA4EC85E0EA7A45C6B2A05820492D5A -- C:\WINDOWS\system32\drivers\pciide.sys
[2006/03/02 08:00:00 | 000,003,328 | ---- | M] (Microsoft Corporation) MD5=2DA4EC85E0EA7A45C6B2A05820492D5A -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\pciide.sys
[2001/10/24 05:52:28 | 000,003,328 | ---- | M] (Microsoft Corporation) MD5=2DA4EC85E0EA7A45C6B2A05820492D5A -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\pciide.sys
< MD5 for: SCECLI.DLL >
[2006/03/02 08:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 23:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 23:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\scecli.dll
[2008/04/13 23:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006/03/02 08:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008/04/13 23:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008/04/13 23:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\smss.exe
[2008/04/13 23:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008/04/13 23:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 23:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\svchost.exe
[2008/04/13 23:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006/03/02 08:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008/06/20 06:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008/06/20 06:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008/04/13 15:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008/04/13 15:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008/04/13 15:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\tcpip.sys
[2008/04/13 15:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\851a69e5c9fef905f7724b836208b4e4\backup\sp3gdr\tcpip.sys
[2008/06/20 07:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008/06/20 07:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008/06/20 07:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006/03/02 08:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008/06/20 07:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008/04/13 23:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 23:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\userinit.exe
[2008/04/13 23:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006/03/02 08:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006/03/02 08:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/13 23:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 23:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\winlogon.exe
[2008/04/13 23:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006/03/02 08:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008/04/13 23:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008/04/13 23:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\ws2_32.dll
[2008/04/13 23:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2008/06/20 13:49:25 | 000,147,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dnsapi.dll
[2010/02/25 05:48:52 | 011,070,976 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ieframe.dll
[2010/02/25 02:18:52 | 001,985,536 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iertutil.dll
[2008/04/13 23:21:49 | 000,275,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\mstask.dll
[2008/04/13 23:21:51 | 000,067,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ntdsapi.dll
[2008/06/17 15:02:56 | 008,465,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\shell32.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008/08/29 14:34:25 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008/08/29 14:34:24 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008/08/29 14:34:24 | 000,475,136 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2008/06/20 13:49:25 | 000,147,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dnsapi.dll
[2010/02/25 05:48:52 | 011,070,976 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ieframe.dll
[2010/02/25 02:18:52 | 001,985,536 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iertutil.dll
[2008/04/13 23:21:49 | 000,275,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\mstask.dll
[2008/04/13 23:21:51 | 000,067,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ntdsapi.dll
[2008/06/17 15:02:56 | 008,465,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\shell32.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< CREATERESTOREPOINT >
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 18:16
od danekvdv
Zdravím,tak nastartovat winy se nazdařilo,stále windows neumožnuje oveřilt licenci pro tento pc.
OTL logfile created on: 7/7/2010 2:35:22 AM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,023.00 Mb Total Physical Memory | 804.00 Mb Available Physical Memory | 79.00% Memory free
907.00 Mb Paging File | 824.00 Mb Available in Paging File | 91.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.95 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.46% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet003
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - ( ) - (Registry value not found)
O20 - HKLM Winlogon: UserInit - ( ) - (Registry value not found)
O20 - Winlogon\Notify\ahiykkyo: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cryptnet: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cscdll: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\ScCertProp: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\SensLogn: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní síť
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Cookies
[2010/06/27 15:42:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Cookies
[2010/06/27 15:29:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:22:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%commonprogramfiles%
[2010/06/27 15:20:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%programfiles%
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/07/07 02:34:56 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/06 11:49:08 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/06 11:49:03 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/06 11:48:59 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/06 11:48:59 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/06 11:48:58 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/06 11:48:58 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[2010/06/29 09:32:33 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/27 15:30:35 | 000,038,552 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/27 14:57:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/27 14:57:21 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/06/27 14:57:14 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/27 14:57:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
[2010/06/07 15:00:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/06/07 10:21:00 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\WebReg psc C3100 series.job
[2010/06/07 08:53:24 | 060,783,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,024,576 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:20:50 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
========== Purity Check ==========
========== Custom Scans ==========
< :OTL >
< O20 - Winlogon\Notify\ahiykkyo: DllName - Reg Error: Value error. - Reg Error: Value error. File not found >
< :reg >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] >
< "Shell"="explorer.exe" >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] >
< "UserInit"="C:\\WINDOWS\\system32\\userinit.exe, >
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 22:29
od danekvdv
Mužu zde být od 19.00(pracovní doba).Z Mwav nemužu najít log asi jej Avast zlikvidoval,je na Mwav alergický.našel jsem v truhle Avastu data aplikací/swupdate.dll přesunut do truhly - win32.malware-gen.
OTL logfile created on: 7/8/2010 7:15:02 AM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000405 | Country: Ceská republika | Language: CSY | Date Format: d.M.yyyy
1,023.00 Mb Total Physical Memory | 820.00 Mb Available Physical Memory | 80.00% Memory free
907.00 Mb Paging File | 834.00 Mb Available in Paging File | 92.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.95 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.43% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet003
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladac zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cryptnet: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cscdll: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\ScCertProp: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\SensLogn: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/07/07 04:11:08 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní sít
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Cookies
[2010/06/27 15:42:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Cookies
[2010/06/27 15:29:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:22:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%commonprogramfiles%
[2010/06/27 15:20:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%programfiles%
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/07/08 06:05:34 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/07 22:55:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/07 22:55:19 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/07 22:55:16 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:15 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[2010/06/29 09:32:33 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/27 15:30:35 | 000,038,552 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/27 14:57:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/27 14:57:21 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/06/27 14:57:14 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/27 14:57:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,012,288 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:20:50 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
< End of report >
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cryptnet: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cscdll: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\ScCertProp: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\SensLogn: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/07/07 04:11:08 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní sít
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Cookies
[2010/06/27 15:42:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Cookies
[2010/06/27 15:29:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:22:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%commonprogramfiles%
[2010/06/27 15:20:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%programfiles%
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/07/08 06:05:34 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/07 22:55:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/07 22:55:19 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/07 22:55:16 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:15 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[2010/06/29 09:32:33 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/27 15:30:35 | 000,038,552 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/27 14:57:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/27 14:57:21 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/06/27 14:57:14 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/27 14:57:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,012,288 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:20:50 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 22:45
od danekvdv
Fix it?
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 22:49
od danekvdv
Ok díky moc za snahu jdu na to.
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 23:15
od danekvdv
Tady je výpis,jinak ještě jednou tisíceré díky za snahu a čas.
OTL logfile created on: 7/8/2010 8:56:14 AM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000405 | Country: Ceská republika | Language: CSY | Date Format: d.M.yyyy
1,023.00 Mb Total Physical Memory | 827.00 Mb Available Physical Memory | 81.00% Memory free
907.00 Mb Paging File | 840.00 Mb Available in Paging File | 93.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.95 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.43% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet003
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladac zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\crypt32chain: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cryptnet: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\cscdll: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\ScCertProp: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\SensLogn: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O20 - Winlogon\Notify\wlballoon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/07/07 04:11:08 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní sít
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Cookies
[2010/06/27 15:42:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Cookies
[2010/06/27 15:29:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:22:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%commonprogramfiles%
[2010/06/27 15:20:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%programfiles%
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/07/08 07:17:16 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/07 22:55:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/07 22:55:19 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/07 22:55:16 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:16 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/07 22:55:15 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[2010/06/29 09:32:33 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/27 15:30:35 | 000,038,552 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/27 14:57:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/27 14:57:21 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/06/27 14:57:14 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/27 14:57:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,012,288 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:20:50 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
========== Purity Check ==========
========== Custom Scans ==========
< reg query "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /s /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
HibernationPreviouslyEnabled REG_DWORD 0x1
ShowLogonOptions REG_DWORD 0x1
Shell REG_SZ explorer.exe
UserInit REG_SZ C:\WINDOWS\system32\userinit.exe
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}
<NO NAME> REG_SZ Bezdrátové
ProcessGroupPolicy REG_SZ ProcessWIRELESSPolicy
DllName REG_EXPAND_SZ gptext.dll
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{25537BA6-77A8-11D2-9B6C-0000F8080861}
<NO NAME> REG_SZ Folder Redirection
ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyEx
DllName REG_EXPAND_SZ fdeploy.dll
NoMachinePolicy REG_DWORD 0x1
NoSlowLink REG_DWORD 0x1
PerUserLocalSettings REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x0
NoBackgroundPolicy REG_DWORD 0x0
GenerateGroupPolicy REG_SZ GenerateGroupPolicy
EventSources REG_MULTI_SZ (Folder Redirection,Application)\0\0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{3610eda5-77ef-11d2-8dc5-00c04fa31a66}
<NO NAME> REG_SZ Disková kvóta Microsoft
NoMachinePolicy REG_DWORD 0x0
NoUserPolicy REG_DWORD 0x1
NoSlowLink REG_DWORD 0x1
NoBackgroundPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
PerUserLocalSettings REG_DWORD 0x0
RequiresSuccessfulRegistry REG_DWORD 0x1
EnableAsynchronousProcessing REG_DWORD 0x0
DllName REG_EXPAND_SZ dskquota.dll
ProcessGroupPolicy REG_SZ ProcessGroupPolicy
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{426031c0-0b47-4852-b0ca-ac3d37bfcb39}
<NO NAME> REG_SZ Plánovac paketu technologie QoS
ProcessGroupPolicy REG_SZ ProcessPSCHEDPolicy
DllName REG_EXPAND_SZ gptext.dll
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{42B5FAAE-6536-11d2-AE5A-0000F87571E3}
<NO NAME> REG_SZ Skripty
ProcessGroupPolicy REG_SZ ProcessScriptsGroupPolicy
ProcessGroupPolicyEx REG_SZ ProcessScriptsGroupPolicyEx
GenerateGroupPolicy REG_SZ GenerateScriptsGroupPolicy
DllName REG_EXPAND_SZ gptext.dll
NoSlowLink REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
NotifyLinkTransition REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}
<NO NAME> REG_SZ Internet Explorer Zonemapping
DllName REG_SZ C:\WINDOWS\system32\iedkcs32.dll
ProcessGroupPolicy REG_SZ ProcessGroupPolicyForZoneMap
NoGPOListChanges REG_DWORD 0x1
RequiresSucessfulRegistry REG_DWORD 0x1
DisplayName REG_SZ @C:\WINDOWS\system32\iedkcs32.dll.mui,-3051
RequiresSuccessfulRegistry REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{7B849a69-220F-451E-B3FE-2CB811AF94AE}
<NO NAME> REG_SZ Internet Explorer User Accelerators
DisplayName REG_SZ @C:\WINDOWS\system32\iedkcs32.dll.mui,-3051
DllName REG_SZ C:\WINDOWS\system32\iedkcs32.dll
NoGPOListChanges REG_DWORD 0x1
ProcessGroupPolicy REG_SZ ProcessGroupPolicyForActivities
ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyForActivitiesEx
RequiresSuccessfulRegistry REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{827D319E-6EAC-11D2-A4EA-00C04F79F83A}
ProcessGroupPolicy REG_SZ SceProcessSecurityPolicyGPO
GenerateGroupPolicy REG_SZ SceGenerateGroupPolicy
ExtensionRsopPlanningDebugLevel REG_DWORD 0x1
ProcessGroupPolicyEx REG_SZ SceProcessSecurityPolicyGPOEx
ExtensionDebugLevel REG_DWORD 0x1
DllName REG_EXPAND_SZ scecli.dll
<NO NAME> REG_SZ Security
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
EnableAsynchronousProcessing REG_DWORD 0x1
MaxNoGPOListChangesInterval REG_DWORD 0x3c0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}
ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyEx
GenerateGroupPolicy REG_SZ GenerateGroupPolicy
ProcessGroupPolicy REG_SZ ProcessGroupPolicy
DllName REG_SZ C:\WINDOWS\system32\iedkcs32.dll
<NO NAME> REG_SZ Internet Explorer Branding
NoSlowLink REG_DWORD 0x1
NoBackgroundPolicy REG_DWORD 0x0
NoGPOListChanges REG_DWORD 0x1
NoMachinePolicy REG_DWORD 0x1
DisplayName REG_SZ @C:\WINDOWS\system32\iedkcs32.dll.mui,-3014
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}
ProcessGroupPolicy REG_SZ SceProcessEFSRecoveryGPO
DllName REG_EXPAND_SZ scecli.dll
<NO NAME> REG_SZ EFS recovery
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
RequiresSuccessfulRegistry REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}
<NO NAME> REG_SZ 802.3 Group Policy
DisplayName REG_EXPAND_SZ @dot3gpclnt.dll,-100
ProcessGroupPolicyEx REG_SZ ProcessLANPolicyEx
GenerateGroupPolicy REG_SZ GenerateLANPolicy
DllName REG_EXPAND_SZ dot3gpclnt.dll
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{C631DF4C-088F-4156-B058-4375F0853CD8}
<NO NAME> REG_SZ Microsoft Offline Files
DllName REG_EXPAND_SZ %SystemRoot%\System32\cscui.dll
EnableAsynchronousProcessing REG_DWORD 0x0
NoBackgroundPolicy REG_DWORD 0x0
NoGPOListChanges REG_DWORD 0x0
NoMachinePolicy REG_DWORD 0x0
NoSlowLink REG_DWORD 0x0
NoUserPolicy REG_DWORD 0x1
PerUserLocalSettings REG_DWORD 0x0
ProcessGroupPolicy REG_SZ ProcessGroupPolicy
RequiresSuccessfulRegistry REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{c6dc5466-785a-11d2-84d0-00c04fb169f7}
<NO NAME> REG_SZ Instalace softwaru
DllName REG_EXPAND_SZ appmgmts.dll
ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyObjectsEx
GenerateGroupPolicy REG_SZ GenerateGroupPolicy
NoBackgroundPolicy REG_DWORD 0x0
RequiresSucessfulRegistry REG_DWORD 0x0
NoSlowLink REG_DWORD 0x1
PerUserLocalSettings REG_DWORD 0x1
EventSources REG_MULTI_SZ (Application Management,Application)\0(MsiInstaller,Application)\0\0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
<NO NAME> REG_SZ Internet Explorer Machine Accelerators
DisplayName REG_SZ @C:\WINDOWS\system32\iedkcs32.dll.mui,-3051
DllName REG_SZ C:\WINDOWS\system32\iedkcs32.dll
NoGPOListChanges REG_DWORD 0x1
ProcessGroupPolicy REG_SZ ProcessGroupPolicyForActivities
ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyForActivitiesEx
RequiresSuccessfulRegistry REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\GPExtensions\{e437bc1c-aa7d-11d2-a382-00c04f991e27}
<NO NAME> REG_SZ Zabezpecení protokolu IP
ProcessGroupPolicy REG_SZ ProcessIPSECPolicy
DllName REG_EXPAND_SZ gptext.dll
NoUserPolicy REG_DWORD 0x1
NoGPOListChanges REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\AtiExtEvent
Asynchronous REG_DWORD 0x0
Lock REG_SZ AtiLockEvent
Logon REG_SZ AtiLogonEvent
Reconnect REG_SZ AtiReConnectEvent
Shutdown REG_SZ AtiShutdownEvent
StartShell REG_SZ AtiStartShellEvent
StopScreenSaver REG_SZ AtiStopScreenSaverEvent
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\avgrsstarter
Startup REG_SZ AvgStartup
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\crypt32chain
Impersonate REG_DWORD 0x0
Logoff REG_SZ ChainWlxLogoffEvent
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\cryptnet
Impersonate REG_DWORD 0x0
Logoff REG_SZ CryptnetWlxLogoffEvent
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\cscdll
Logon REG_SZ WinlogonLogonEvent
ScreenSaver REG_SZ WinlogonScreenSaverEvent
Shutdown REG_SZ WinlogonShutdownEvent
Impersonate REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\dimsntfy
DllName REG_EXPAND_SZ %SystemRoot%\System32\dimsntfy.dll
Shutdown REG_SZ WlDimsShutdown
Logoff REG_SZ WlDimsLogoff
Lock REG_SZ WlDimsLock
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\ScCertProp
Logon REG_SZ SCardStartCertProp
Lock REG_SZ SCardSuspendCertProp
Enabled REG_DWORD 0x1
Asynchronous REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\Schedule
DllName REG_EXPAND_SZ wlnotify.dll
StartShell REG_SZ SchedStartShell
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\sclgntfy
Impersonate REG_DWORD 0x0
DllName REG_EXPAND_SZ sclgntfy.dll
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\SensLogn
Lock REG_SZ SensLockEvent
Logoff REG_SZ SensLogoffEvent
MaxWait REG_DWORD 0x258
StopScreenSaver REG_SZ SensStopScreenSaverEvent
Shutdown REG_SZ SensShutdownEvent
PostShell REG_SZ SensPostShellEvent
Reconnect REG_SZ SensReconnectEvent
Impersonate REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\termsrv
DllName REG_EXPAND_SZ wlnotify.dll
Logoff REG_SZ TSEventLogoff
PostShell REG_SZ TSEventPostShell
StartShell REG_SZ TSEventStartShell
MaxWait REG_DWORD 0x258
Disconnect REG_SZ TSEventDisconnect
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\WgaLogon
Logoff REG_SZ WLEventLogoff
Shutdown REG_SZ WLEventShutdown
StopScreenSaver REG_SZ WLEventStopScreenSaver
Unlock REG_SZ WLEventUnlock
PostShell REG_SZ WLEventPostShell
Reconnect REG_SZ WLEventReconnect
Asynchronous REG_DWORD 0x0
MaxWait REG_DWORD 0xffffffff
Event REG_DWORD 0x2
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\WgaLogon\Settings
<NO NAME> REG_SZ
Data REG_BINARY 01000000D08C9DDF0115D1118C7A00C04FC297EB01000000C8E4C4DDD698B34D8BA41E20E62CCB3504000000040000005300000003660000A80000001000000038291D097842591BC5E64249C1904D8C0000000004800000A0000000100000001E4D6B5E9BB64DA53E008F7622F08F5BB0010000FB79AD45BA63ADD3E625959BAC62ADBB57C34187670C3B43CB88B620CD3EA7C9585F8431D841058DC7867B8DE669E211CC19EDD47D3DE03C3DD4A3684BBA8F96288FB3508978319BA6D734FE5352BE8FDC92AFD3701630ACC64FF401623BCF380D47F3711F2A3C9D1DD3C97A4A58F4AD5082EA756D3C85CE6A04F889F4CE7F4E007AC83B595CBDDECD53884EFC978ABB33969D1F4EB468C6A74D61705F17A478001BAC1FCA781E01F9EE418DDB6715FEC0BA05DD4A2427422F66CDB210365C1AFB7A57B098DA9AA0AE15812B6048F51ED00B5C0F0317B5E9FCBF664ED003832DB3F37852CA272D5EE91163DC52DC42C35C6C78617506E993F5FDB42F0B73A17A7721D30D43B782A25384A0E654D344456329C692DD4E5E2A18D1B7D2B2A73941814F0CF81BB30EAC7F96E54FCC5F5697FF2E6D1C43E73E3A40741F1B7C66ECC13FE745A685223100D8455088C217CD12A7D9007D5F21AC8445FF06A0F34FCEC0AB453D35437B9DA5B361B4ACDA4F890F850FA9062FB54BEC97EBFEC7757CA0506FF3AB0B820AF01163251D188E602DEC0A1A107421EADD966AF4A70D18286DED91DEB06C1796B6675D32EEA4D5CC2A2314000000008705EE23C09887EF1E7857FA9B6ED0D336ECFF
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\Notify\wlballoon
Logon REG_SZ RegisterTicketExpiredNotificationEvent
Impersonate REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\SpecialAccounts
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\SpecialAccounts\UserList
< regedit /e "C:\nahled1.txt" "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /c >
< MD5 for: ATI2EVXX.DLL >
[2007/06/26 21:50:42 | 000,118,784 | ---- | M] (ATI Technologies Inc.) MD5=9252DF6728F9A5BFD45F80EC504CCCE0 -- C:\WINDOWS\system32\ati2evxx.dll
< MD5 for: CRYPT32.DLL >
[2006/03/02 08:00:00 | 000,600,576 | ---- | M] (Microsoft Corporation) MD5=6BDB36E60A2514A5A1927BDECAA9911E -- C:\WINDOWS\$NtServicePackUninstall$\crypt32.dll
[2008/04/13 23:21:38 | 000,602,112 | ---- | M] (Microsoft Corporation) MD5=8880CEB8AC06F4F102D2E7B55D9705CA -- C:\WINDOWS\ServicePackFiles\i386\crypt32.dll
[2008/04/13 23:21:38 | 000,602,112 | ---- | M] (Microsoft Corporation) MD5=8880CEB8AC06F4F102D2E7B55D9705CA -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\crypt32.dll
[2008/04/13 23:21:38 | 000,602,112 | ---- | M] (Microsoft Corporation) MD5=8880CEB8AC06F4F102D2E7B55D9705CA -- C:\WINDOWS\system32\crypt32.dll
< MD5 for: CRYPTNET.DLL >
[2008/04/13 23:21:38 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=47E827EB2C26A383AD16BF80C0FCA8FA -- C:\WINDOWS\ServicePackFiles\i386\cryptnet.dll
[2008/04/13 23:21:38 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=47E827EB2C26A383AD16BF80C0FCA8FA -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cryptnet.dll
[2008/04/13 23:21:38 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=47E827EB2C26A383AD16BF80C0FCA8FA -- C:\WINDOWS\system32\cryptnet.dll
[2006/03/02 08:00:00 | 000,063,488 | ---- | M] (Microsoft Corporation) MD5=509FC425705937F3BE30DED93F7582F7 -- C:\WINDOWS\$NtServicePackUninstall$\cryptnet.dll
< MD5 for: CSCDLL.DLL >
[2006/03/02 08:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=36B7CD28481085AADA7F1515915C18CA -- C:\WINDOWS\$NtServicePackUninstall$\cscdll.dll
[2008/04/13 23:21:38 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=616A0CC9DA2BAA008306EEA895F8BC0F -- C:\WINDOWS\ServicePackFiles\i386\cscdll.dll
[2008/04/13 23:21:38 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=616A0CC9DA2BAA008306EEA895F8BC0F -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cscdll.dll
[2008/04/13 23:21:38 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=616A0CC9DA2BAA008306EEA895F8BC0F -- C:\WINDOWS\system32\cscdll.dll
< MD5 for: WGALOGON.DLL >
[2009/03/10 16:18:04 | 000,265,096 | ---- | M] (Microsoft Corporation) MD5=15A6CB4991BA08D408E2A36261A99B1F -- C:\WINDOWS\system32\dllcache\wgaLogon.dll
[2009/03/10 16:18:04 | 000,265,096 | ---- | M] (Microsoft Corporation) MD5=15A6CB4991BA08D408E2A36261A99B1F -- C:\WINDOWS\system32\WgaLogon.dll
< MD5 for: WLNOTIFY.DLL >
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\ServicePackFiles\i386\wlnotify.dll
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\ServicePackFiles\i386\wlnotify.dll
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\wlnotify.dll
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\wlnotify.dll
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\system32\wlnotify.dll
[2008/04/13 23:22:05 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=4807A2D624C4D3643B29AE2BA3FAA13D -- C:\WINDOWS\system32\wlnotify.dll
[2006/03/02 08:00:00 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=C30BFC4B8739522ACE6174A204D5A087 -- C:\WINDOWS\$NtServicePackUninstall$\wlnotify.dll
[2006/03/02 08:00:00 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=C30BFC4B8739522ACE6174A204D5A087 -- C:\WINDOWS\$NtServicePackUninstall$\wlnotify.dll
< klik an run scan >
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 07 črc 2010 23:18
od danekvdv
Jinak přeji dobrou noc ráno jdu do rachoty,takže zatím díky a čest a chvála viry.cz a všem kdo se na něm podílejí.
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 08 črc 2010 19:44
od danekvdv
Zdarec tak provedeno,včetně : .Systém se chová pořád stejně i při pokusu nastartovat v nouzáku.Stále stejná hláška a pak malá změna při opakovaném potvrzování hesla se mění konec toho řádku system32/....... Jo a už se dá přečíst kód chyby windows numožňuje .... 0x8009001a
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 09 črc 2010 19:34
od danekvdv
Tu log.
OTL logfile created on: 7/10/2010 8:28:29 AM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,023.00 Mb Total Physical Memory | 805.00 Mb Available Physical Memory | 79.00% Memory free
907.00 Mb Paging File | 824.00 Mb Available in Paging File | 91.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.96 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.42% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
Using ControlSet: ControlSet004
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2010/07/07 04:11:08 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010/07/10 08:27:41 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/10 01:19:33 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/10 01:19:30 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/10 01:19:28 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/10 01:19:28 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/10 01:19:27 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/10 01:19:27 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
========== Purity Check ==========
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 09 črc 2010 21:31
od danekvdv
Nebaví.?,ale beru to tak,že mi vadí,že nějaká havěť vytvořená někým,kdo si potřebuje dokázat,že má větší znalosti než téměř 100% uživatelů winů to dokáže.Pokud máš chuť se tomu ještě věnovat,tak bych byl rád,mám za to že to bereš také tak podobně.Reinstal by byl rychlejší,ale...
Fórum samozřejmě podpořím finančně,už jen pro to co jsem viděl,že tu odvádíte ve svém volném čase,to stojí za uznání pro Vás rádce,moderátory a všechny kdo s tímto super fórem má co společného.
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 12 črc 2010 18:58
od danekvdv
O víkendu mi nejela wi-fina,provedeno,start v nouzáku doběhne do černé obrazovky v rozích napsán nouzový režim a opět přihlašovací hláška.OTL :Load libary(regwizc.dll)failed-the specified module could not be found,"-"(licdll.dll)failed"-".
OTL logfile created on: 7/10/2010 9:27:25 PM - Run
OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
Service Pack 3 (Version = 5.1.2600) - Type =
Internet Explorer (Version = )
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1,023.00 Mb Total Physical Memory | 826.00 Mb Available Physical Memory | 81.00% Memory free
907.00 Mb Paging File | 842.00 Mb Available in Paging File | 93.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 200.96 Gb Free Space | 86.29% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 3.77 Gb Total Space | 3.37 Gb Free Space | 89.45% Space Free | Partition Type: FAT
Computer Name: REATOGO
Current User Name: SYSTEM
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
Using ControlSet: ControlSet004
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/03/05 19:05:09 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\aec.sys -- (aec)
DRV - [2010/06/01 15:19:56 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 15:19:56 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 19:04:55 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 19:04:50 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2008/04/13 15:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/26 21:58:16 | 002,303,488 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/06/22 06:14:00 | 004,432,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/12/14 04:44:00 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/06/01 15:21:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2010/05/24 14:46:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/07 08:37:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/21 09:38:08 | 000,000,000 | ---D | M]
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/07 08:37:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010/04/21 09:38:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 11:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/07 08:37:48 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009/11/07 08:37:48 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009/11/07 08:37:48 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009/11/07 08:37:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009/11/07 08:37:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006/03/02 08:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O4 - HKLM..\RunOnce: [!Hotfix Uninstall Wizard - 492fd695-f391-4d79-ab6c-fb243845a370] C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe (Microsoft Corporation)
O4 - HKU\LocalService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\NetworkService.NT_AUTHORITY.005_ON_C..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator.HAL3000_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService.NT_AUTHORITY.005_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} Reg Error: Value error. (QuickTime Plugin Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} Reg Error: Value error. (Shockwave Flash Object)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 12:42:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 09:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/07/07 04:11:08 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/07 02:32:22 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2010/07/06 08:03:14 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/07/03 00:16:49 | 000,000,000 | ---D | C] -- C:\~ErdUserProfile.$$$
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator.HAL3000\Cookies
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\SendTo
[2010/06/30 15:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací
[2010/06/30 15:55:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator.HAL3000\Nabídka Start
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Šablony
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Recent
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní tiskárny
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Okolní síť
[2010/06/30 15:55:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Plocha
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Oblíbené položky
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Local Settings\Data aplikací\Microsoft
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Data aplikací\Macromedia
[2010/06/30 15:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator.HAL3000\Dokumenty
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Cookies
[2010/06/27 15:42:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:42:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací\Microsoft
[2010/06/27 15:29:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Cookies
[2010/06/27 15:29:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Local Settings
[2010/06/27 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\Data aplikací
[2010/06/27 15:22:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%commonprogramfiles%
[2010/06/27 15:20:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\%programfiles%
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/07/10 08:29:26 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/07/10 01:19:33 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/07/10 01:19:30 | 000,000,157 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/10 01:19:28 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/10 01:19:28 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/07/10 01:19:27 | 000,262,144 | -H-- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/07/10 01:19:27 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/07/03 00:01:20 | 000,000,258 | ---- | M] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:08 | 000,002,834 | ---- | M] () -- C:\cc_20100702_210040.reg
[2010/06/29 09:32:33 | 1073,139,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/27 15:30:35 | 000,038,552 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/27 14:57:21 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/27 14:57:21 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/06/27 14:57:14 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/27 14:57:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/07/03 00:01:17 | 000,000,258 | ---- | C] () -- C:\cc_20100702_210115.reg
[2010/07/03 00:01:01 | 000,002,834 | ---- | C] () -- C:\cc_20100702_210040.reg
[2010/06/30 15:55:26 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Administrator.HAL3000\ntuser.ini
[2010/06/30 15:55:25 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NTUSER.DAT
[2010/06/30 15:55:25 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\Administrator.HAL3000\NtUser.dat.LOG
[2010/06/27 15:42:40 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:42:39 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:42:39 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:29:47 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\ntuser.ini
[2010/06/27 15:29:45 | 000,262,144 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NTUSER.DAT
[2010/06/27 15:29:45 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService.NT AUTHORITY.005\NtUser.dat.LOG
[2010/06/27 15:20:50 | 1073,139,712 | -HS- | C] () -- C:\hiberfil.sys
[2008/10/31 10:33:49 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2008/08/29 13:23:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/08/29 13:20:41 | 000,594,450 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007/08/20 20:26:52 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007/08/15 18:33:14 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/08/15 18:30:26 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006/06/08 05:51:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/01/04 05:12:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2002/05/13 05:16:19 | 000,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001/07/06 21:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2010/06/27 14:36:40 | 000,000,482 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5F5A6E3E-F68B-4FA2-811C-48AF9B3A1237}.job
========== Purity Check ==========
========== Custom Scans ==========
< regsvr32.exe regwizc.dll /c >
< regsvr32.exe licdll.dll /c >
< End of report >
Re: Windows neumožňuje ověřit licenci pro tento počítač.
Napsal: 13 črc 2010 17:03
od Caroprd111
Dobrý den,
zaskočím za kolegu.
Havěť stále vítězí, už nás nic nenapadá. Nejlepší bude, když přeinstalujete systém. Je mi líto, že jsme Vám nemohli pomoct, ale systém je opravdu hodně poškozený.