Zdravím,
zdá se mi, že mám nějaké zasekané PC najednou, tak bych chtěl poprosit o kontrolu logu, jestli tu nemám nějakou havěť.
Logfile of random's system information tool 1.07 (written by random/random)
Run by kubik at 2010-07-05 17:14:23
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 42 GB (42%) free of 100 GB
Total RAM: 3071 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:14:35, on 5.7.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Documents and Settings\kubik\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
D:\gamez\steam\steam.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\WPMP150\miranda32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Opera\opera.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\kubik\Plocha\RSIT.exe
C:\Program Files\trend micro\kubik.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 194.36.10.156:3124
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [GBB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe" /S
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [vmware-tray] C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\kubik\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "d:\gamez\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [NCsoft Launcher] C:\Program Files\NCSoft\Launcher\NCLauncher.exe /Minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: forteManager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: mental ray 3.7 Satellite for Autodesk 3ds Max 2010 32-bit 32-bit (mi-raysat_3dsmax2010_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
--
End of file - 9853 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-KOLCEKUVKOMP-kubik.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-630328440-839522115-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-630328440-839522115-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2005-11-15 921600]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"GBB36X Configure"=C:\WINDOWS\system32\JMRaidTool.exe [2006-07-12 356352]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-07-21 16261632]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe [2002-12-10 188416]
"RivaTunerStartupDaemon"=C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe [2009-08-22 2781184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-03-17 421888]
"vmware-tray"=C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [2008-03-03 72240]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-02 500208]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 98304]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-03-04 311296]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Documents [2010-03-16 57]
"Steam"=d:\gamez\steam\steam.exe [2010-05-08 1238352]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"NCsoft Launcher"=C:\Program Files\NCSoft\Launcher\NCLauncher.exe [2010-07-05 38184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2010-03-17 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vmware-tray]
C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [2008-03-03 72240]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
forteManager.lnk - C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="wbsys.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-05-27 159744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll [2009-05-30 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveTypeAutoRun"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe"="C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe:*:Enabled:Kerio Personal Firewall 4 - GUI"
"C:\Program Files\WPMP150\miranda32.exe"="C:\Program Files\WPMP150\miranda32.exe:*:Enabled:Miranda IM"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Gamez\Call Of Duty 4\iw3mp.exe"="D:\Gamez\Call Of Duty 4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Kolcek93\Backup\BitLord\BitLord.exe"="F:\Kolcek93\Backup\BitLord\BitLord.exe:*:Enabled:BitLord"
"C:\Program Files\Java\jre6\launch4j-tmp\JDownloader.exe"="C:\Program Files\Java\jre6\launch4j-tmp\JDownloader.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Gamez\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="D:\Gamez\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"D:\Gamez\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="D:\Gamez\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"D:\Gamez\Steam\SteamApps\kolcek93\half-life 2 deathmatch\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2"
"F:\ntb\SuperScan\SuperScan4.exe"="F:\ntb\SuperScan\SuperScan4.exe:*:Enabled:SuperScan 4 Beta 1"
"D:\Gamez\Half Life RIP\hl.exe"="D:\Gamez\Half Life RIP\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"D:\Gamez\L4D\left4dead.exe"="D:\Gamez\L4D\left4dead.exe:*:Enabled:left4dead"
"D:\Gamez\Unreal Tournament\System\UnrealTournament.exe"="D:\Gamez\Unreal Tournament\System\UnrealTournament.exe:*:Enabled:UnrealTournament"
"D:\Gamez\Steam\Steam.exe"="D:\Gamez\Steam\Steam.exe:*:Enabled:Steam"
"D:\Gamez\Steam\SteamApps\kolcek93\source sdk base\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\source sdk base\hl2.exe:*:Enabled:hl2"
"D:\Gamez\Stronghold 2\Stronghold2.exe"="D:\Gamez\Stronghold 2\Stronghold2.exe:*:Enabled:Stronghold 2"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"F:\hack\SuperScan\SuperScan4.exe"="F:\hack\SuperScan\SuperScan4.exe:*:Enabled:SuperScan 4 Beta 1"
"D:\Gamez\Savage\savage2.exe"="D:\Gamez\Savage\savage2.exe:*:Enabled:savage2"
"D:\Gamez\Steam\SteamApps\common\trackmania nations forever\TmForever.exe"="D:\Gamez\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever"
"D:\Gamez\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe"="D:\Gamez\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever"
"C:\Program Files\Call Graph\CallGraph.exe"="C:\Program Files\Call Graph\CallGraph.exe:*:Enabled:Call Graph"
"D:\Gamez\Call Of Duty 2\CoD2MP_s.exe"="D:\Gamez\Call Of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"D:\Gamez\Mass Effect 2\Binaries\MassEffect2.exe"="D:\Gamez\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2 Game"
"D:\Gamez\Mass Effect 2\MassEffect2Launcher.exe"="D:\Gamez\Mass Effect 2\MassEffect2Launcher.exe:*:Enabled:Mass Effect 2 Launcher"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\Autodesk\Backburner\monitor.exe"="C:\Program Files\Autodesk\Backburner\monitor.exe:*:Enabled:backburner 2.3 monitor"
"C:\Program Files\Autodesk\Backburner\manager.exe"="C:\Program Files\Autodesk\Backburner\manager.exe:*:Enabled:backburner 2.3 manager"
"C:\Program Files\Autodesk\Backburner\server.exe"="C:\Program Files\Autodesk\Backburner\server.exe:*:Enabled:backburner 2.3 server"
"C:\Program Files\Autodesk\3ds Max 2010\3dsmax.exe"="C:\Program Files\Autodesk\3ds Max 2010\3dsmax.exe:*:Enabled:Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe"="C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe:*:Enabled:mental ray satellite server for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe"="C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe:*:Enabled:mental ray satellite for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\WPMP150\Přijaté soubory\Játro_354291164\Projekt1.exe"="C:\Program Files\WPMP150\Přijaté soubory\Játro_354291164\Projekt1.exe:*:Enabled:Projekt1"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"H:\Gamez\Assassin's Creed 2\AssassinsCreedIIGame.exe"="H:\Gamez\Assassin's Creed 2\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II"
"H:\Gamez\Assassin's Creed 2\AssassinsCreedII.exe"="H:\Gamez\Assassin's Creed 2\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update"
"H:\Gamez\Assassin's Creed 2\UPlayBrowser.exe"="H:\Gamez\Assassin's Creed 2\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay"
"H:\Gamez\Assassin's Creed 2\server\server.exe"="H:\Gamez\Assassin's Creed 2\server\server.exe:*:Enabled:server"
"D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe"="D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2"
"D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe"="D:\Gamez\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer"
"H:\Gamez\The Battle for Middle-earth I\game.dat"="H:\Gamez\The Battle for Middle-earth I\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"H:\Gamez\The Battle for Middle-earth II\game.dat"="H:\Gamez\The Battle for Middle-earth II\game.dat:*:Enabled:The Battle for Middle-earth(tm) II"
"H:\Gamez\The Battle for Middle-earth II The Rise of the Witch-king\game.dat"="H:\Gamez\The Battle for Middle-earth II The Rise of the Witch-king\game.dat:*:Enabled:The Lord of the Rings, The Rise of the Witch-king"
"C:\Program Files\VertrigoServ\Apache\bin\v_apache.exe"="C:\Program Files\VertrigoServ\Apache\bin\v_apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\VertrigoServ\Mysql\bin\v_mysqld.exe"="C:\Program Files\VertrigoServ\Mysql\bin\v_mysqld.exe:*:Enabled:v_mysqld"
"H:\Gamez\Split Second Velocity - rld\SplitSecond.exe"="H:\Gamez\Split Second Velocity - rld\SplitSecond.exe:*:Enabled:Split/Second"
"D:\Gamez\Company of Heroes\RelicCOH.exe"="D:\Gamez\Company of Heroes\RelicCOH.exe:*:Enabled:RelicCOH"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"H:\Gamez\Warcraft III\lancraft.exe"="H:\Gamez\Warcraft III\lancraft.exe:*:Enabled:lancraft"
"D:\Gamez\Steam\SteamApps\kolcek93\synergy\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\synergy\hl2.exe:*:Enabled:Synergy"
"H:\Gamez\Prince of Persia Zapomenuté písky\Prince of Persia.exe"="H:\Gamez\Prince of Persia Zapomenuté písky\Prince of Persia.exe:*:Enabled:Prince of Persia Zapomenuté písky"
"H:\Gamez\Prince of Persia Zapomenuté písky\GameSettings.exe"="H:\Gamez\Prince of Persia Zapomenuté písky\GameSettings.exe:*:Enabled:Prince of Persia Zapomenuté písky Settings"
"H:\Gamez\Prince of Persia Zapomenuté písky\gu.exe"="H:\Gamez\Prince of Persia Zapomenuté písky\gu.exe:*:Enabled:Prince of Persia Zapomenuté písky Update"
"H:\Gamez\Prince of Persia Zapomenuté písky\UPlayBrowser.exe"="H:\Gamez\Prince of Persia Zapomenuté písky\UPlayBrowser.exe:*:Enabled:Prince of Persia Zapomenuté písky UPlay"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\Gamez\Steam\SteamApps\kolcek93\counter-strike source\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source"
"D:\Gamez\Steam\SteamApps\kolcek93\day of defeat source\hl2.exe"="D:\Gamez\Steam\SteamApps\kolcek93\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
"C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe"="C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe:*:Enabled:Need for Speed World"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
shell\AutoRun\command - F:\wd_windows_tools\WDSetup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64df66ac-b1b7-11de-b924-005056c00008}]
shell\AutoRun\command - H:\LaunchU3.exe -a
======List of files/folders created in the last 1 months======
2010-07-05 16:40:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2010-07-05 16:35:42 ----SHD---- C:\Config.Msi
2010-07-03 22:40:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2010-07-02 23:56:50 ----D---- C:\Documents and Settings\kubik\Data aplikací\InstallShield
2010-07-02 16:04:53 ----D---- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2010-07-02 15:52:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
2010-07-02 15:41:39 ----D---- C:\Program Files\Adobe Media Player
2010-07-01 22:18:04 ----D---- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
2010-06-25 13:10:57 ----A---- C:\WINDOWS\War3Unin.exe
2010-06-19 10:00:38 ----D---- C:\rsit
2010-06-18 21:39:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2010-06-14 16:55:58 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-14 16:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-14 16:50:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-14 16:46:42 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-14 16:45:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-14 16:44:29 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-14 15:30:09 ----D---- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
2010-06-14 15:30:05 ----D---- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
2010-06-12 11:39:29 ----D---- C:\Documents and Settings\kubik\Data aplikací\COWON
2010-06-12 11:38:10 ----D---- C:\Program Files\JetAudio
======List of files/folders modified in the last 1 months======
2010-07-05 17:14:27 ----D---- C:\Program Files\trend micro
2010-07-05 17:00:47 ----D---- C:\WINDOWS\system32\CatRoot2
2010-07-05 16:42:40 ----D---- C:\WINDOWS\Temp
2010-07-05 16:42:07 ----D---- C:\WINDOWS
2010-07-05 16:41:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\VMware
2010-07-05 16:39:42 ----D---- C:\WINDOWS\system32
2010-07-05 16:38:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-05 16:38:26 ----D---- C:\Program Files\uTorrent
2010-07-05 16:37:15 ----SHD---- C:\WINDOWS\Installer
2010-07-05 16:37:00 ----D---- C:\Program Files\ATI Technologies
2010-07-05 16:36:17 ----RSD---- C:\WINDOWS\assembly
2010-07-05 16:36:15 ----D---- C:\WINDOWS\WinSxS
2010-07-05 16:35:09 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-07-05 16:35:03 ----D---- C:\WINDOWS\system32\drivers
2010-07-05 16:34:55 ----HD---- C:\WINDOWS\inf
2010-07-05 16:34:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-07-05 10:47:34 ----D---- C:\WINDOWS\Prefetch
2010-07-05 10:44:03 ----D---- C:\Documents and Settings\kubik\Data aplikací\VMware
2010-07-05 10:42:34 ----SHD---- C:\WINDOWS\CSC
2010-07-05 10:42:20 ----RSD---- C:\WINDOWS\Fonts
2010-07-04 19:07:32 ----A---- C:\WINDOWS\NeroDigital.ini
2010-07-04 13:47:40 ----D---- C:\Documents and Settings\kubik\Data aplikací\vlc
2010-07-04 13:47:38 ----D---- C:\Documents and Settings\kubik\Data aplikací\dvdcss
2010-07-04 09:34:01 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-04 00:17:07 ----D---- C:\Documents and Settings\kubik\Data aplikací\codeblocks
2010-07-03 23:47:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-07-03 23:47:29 ----SD---- C:\WINDOWS\Tasks
2010-07-02 20:32:17 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-02 16:08:34 ----D---- C:\Documents and Settings\kubik\Data aplikací\Adobe
2010-07-02 15:43:53 ----D---- C:\Program Files\Common Files\Adobe
2010-07-02 15:43:28 ----D---- C:\Program Files\Adobe
2010-07-02 15:41:39 ----RD---- C:\Program Files
2010-07-02 15:39:59 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-07-02 12:03:56 ----D---- C:\Program Files\Opera
2010-07-01 23:14:31 ----D---- C:\WINDOWS\system32\DirectX
2010-06-27 21:12:46 ----D---- C:\Documents and Settings\kubik\Data aplikací\Hamachi
2010-06-24 15:09:02 ----D---- C:\Program Files\TS
2010-06-24 15:07:44 ----D---- C:\Documents and Settings\kubik\Data aplikací\Skype
2010-06-24 15:07:06 ----D---- C:\Documents and Settings\kubik\Data aplikací\skypePM
2010-06-23 16:35:20 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-23 15:26:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-22 18:29:20 ----D---- C:\Documents and Settings\kubik\Data aplikací\FileZilla
2010-06-21 21:32:21 ----D---- C:\WINDOWS\system32\wbem
2010-06-18 21:44:21 ----D---- C:\Program Files\DivX
2010-06-18 21:44:20 ----D---- C:\Program Files\Common Files\DivX Shared
2010-06-14 17:03:12 ----D---- C:\Program Files\FileZilla FTP Client
2010-06-14 16:55:41 ----A---- C:\WINDOWS\imsins.BAK
2010-06-14 16:55:27 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-14 16:54:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-06-14 16:50:14 ----D---- C:\Program Files\Internet Explorer
2010-06-13 17:52:02 ----D---- C:\Program Files\WPMP150
2010-06-12 11:43:38 ----D---- C:\Program Files\Common Files
2010-06-07 15:11:40 ----D---- C:\Program Files\CodeBlocks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2004-04-15 147456]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Uim_IM;UIM Drive Backup Image Plugin; C:\WINDOWS\System32\Drivers\Uim_IM.sys [2007-11-06 131672]
R1 UimBus;Universal Image Mounter Controller; C:\WINDOWS\system32\DRIVERS\UimBus.sys [2007-11-06 32080]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-25 281760]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\Drivers\hcmon.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-25 25888]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704]
R2 VMnetBridge;VMware Bridge Protocol; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [2008-03-03 28592]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\WINDOWS\system32\drivers\vmnetuserif.sys []
R2 VMparport;VMware VMparport; \??\C:\WINDOWS\system32\Drivers\VMparport.sys []
R2 vmx86;VMware vmx86; \??\C:\WINDOWS\system32\Drivers\vmx86.sys []
R2 vstor2;Vstor2 Virtual Storage Driver; \??\C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\C:\Program Files\VMware\VMware Workstation\vstor2-ws60.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-05-27 4830720]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-06-02 99856]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-07-24 4353024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-04-24 47360]
R3 RivaTuner32;RivaTuner32; \??\C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys []
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 vmkbd;VMware kbd; \??\C:\WINDOWS\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys [2008-03-03 16816]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2005-04-12 10144]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2005-04-12 22240]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2005-04-12 45504]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2006-07-12 248192]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys []
S3 adt1q1d9;adt1q1d9; C:\WINDOWS\system32\drivers\adt1q1d9.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 amjcsj73;amjcsj73; C:\WINDOWS\system32\drivers\amjcsj73.sys []
S3 AODDriver;AODDriver; \??\C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 etdrv;etdrv; \??\C:\WINDOWS\etdrv.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-05-28 17480]
S3 LGDDCDevice;LGDDCDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys []
S3 LGII2CDevice;LGII2CDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 vmusb;VMware USB Client Driver; C:\WINDOWS\System32\Drivers\vmusb.sys [2008-03-03 30768]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2005-04-12 5600]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-05-27 602112]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 KPF4;Kerio Personal Firewall 4; C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe [2004-04-15 1949696]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2005-11-15 495616]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-09-25 593920]
S2 mi-raysat_3dsmax2010_32;mental ray 3.7 Satellite for Autodesk 3ds Max 2010 32-bit 32-bit; C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe [2009-03-12 86016]
S2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-05-24 75064]
S2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-04-03 215160]
S2 VMAuthdService;VMware Authorization Service; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [2008-03-03 109104]
S2 VMnetDHCP;VMware DHCP Service; C:\WINDOWS\system32\vmnetdhcp.exe [2008-03-03 121392]
S2 vmount2;VMware Virtual Mount Manager Extended; C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe [2007-03-23 269104]
S2 WDDMService;WD SmartWare Drive Manager; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2009-11-13 110592]
S2 WDSmartWareBackgroundService;WD SmartWare Background Service; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [2009-06-16 20480]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-12-12 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2009-12-25 435016]
S3 ufad-ws60;VMware Agent Service; C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe [2007-11-30 186928]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 msvsmon80;Visual Studio 2005 Remote Debugger; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2005-09-23 2799808]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 VMware NAT Service;VMware NAT Service; C:\WINDOWS\system32\vmnat.exe [2008-03-03 150064]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivka
Zdravim a pekny vecer preji 
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaru
Panel čistič
Po startu se Vam spousti zbytecne programy - na jejich zastaveni muzete pouzit StartUpLite (viz muj podpis)
Log vypada jinak OK, pokud budou problemy a vyse uvedene kroky nepomuzou, tak se ozvete a kouknem na to dukladneji 
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaruPanel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Po startu se Vam spousti zbytecne programy - na jejich zastaveni muzete pouzit StartUpLite (viz muj podpis)
- Zastavenim takovychto programu zrychlyte spousteni systemu
- Program stahnete, ulozte treba na plochu a spustte
- Vypise se Vam seznam zbytecnych programu spoustenych po startu
- Kliknete na Disable cimz zamezite jejich spousteni
- Nasledne kliknete na Continue a je hotovo
- Nemusite se bat ze si odstrelite neco nutneho pro beh Windows - program vypisuje jen zbytecne programy
- Po pouziti muzete programek smazat
Log vypada jinak OK, pokud budou problemy a vyse uvedene kroky nepomuzou, tak se ozvete a kouknem na to dukladneji "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
StartUpLite toho moc nenašel, takže jsem toho spoustu povypínal v CCLeaneru. TFC mi napsalo, že bylo uvolněno 3,5GB místa a restart ani nebyl potřeba. PC zatím ve zhruba podobným stavu(ani jsem nečekal nějaký zlepšení, protože PC celkem pravidelně čistím TuneUp utilities.)
Re: Preventivka
PC restartujte, at se projevi zmeny i kdyz to TFC nevyzadoval no na to ze bylo uvolneno 3,5 giga, tak bych nejake zlepseni cekal ale OK, kouknem na to... Je problem spise v sekani PC (filmy, spousteni, odezva) nebo spise v rychlosti internetu 
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
Restart budu moct až tak za 30 minut. Tady je zatím OTL.txt a extras.txt
http://leteckaposta.cz/376947705
bohužel sem se to nevešlo(ani jednotlivě) a do přílohy to taky nešlo...
http://leteckaposta.cz/376947705
bohužel sem se to nevešlo(ani jednotlivě) a do přílohy to taky nešlo...
Re: Preventivka
Je problem v rychlosti PC nebo internetu Ja si sem OTL.txt pro prehlednost vlozim - rozdeleny do vice prispevku...OTL logfile created on: 5.7.2010 22:46:12 - Run 1
OTL by OldTimer - Version 3.2.7.1 Folder = C:\Documents and Settings\kubik\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 73,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 44,88 Gb Free Space | 45,96% Space Free | Partition Type: NTFS
Drive D: | 600,97 Gb Total Space | 109,96 Gb Free Space | 18,30% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465,75 Gb Total Space | 5,59 Gb Free Space | 1,20% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
Drive H: | 838,19 Gb Total Space | 423,41 Gb Free Space | 50,52% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded
Computer Name: KOLCEKUVKOMP
Current User Name: kubik
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.07.05 22:45:14 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\kubik\Plocha\OTL.exe
PRC - [2010.07.05 18:53:11 | 001,009,152 | ---- | M] (z_o_o_m's corp.) -- C:\Documents and Settings\kubik\Plocha\FIU\FileUploader5.exe
PRC - [2010.06.30 14:52:22 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.05.14 19:17:32 | 000,322,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\utorrent.exe
PRC - [2009.05.27 03:27:04 | 029,262,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2008.11.24 22:31:08 | 000,239,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
PRC - [2008.06.30 22:24:28 | 000,602,181 | ---- | M] ( ) -- C:\Program Files\WPMP150\miranda32.exe
PRC - [2008.04.14 05:22:54 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmplayer.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005.11.15 11:48:00 | 000,495,616 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe
PRC - [2004.04.15 11:05:40 | 001,949,696 | ---- | M] (Kerio Technologies) -- C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
PRC - [2004.04.15 11:05:14 | 002,510,848 | ---- | M] (Kerio Technologies) -- C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
========== Modules (SafeList) ==========
MOD - [2010.07.05 22:45:14 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\kubik\Plocha\OTL.exe
MOD - [2008.07.03 16:09:28 | 000,035,328 | ---- | M] (Goblineye Entertainment) -- C:\Program Files\WPMP150\Plugins\BossKey.dll
MOD - [2008.04.14 05:19:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2007.09.27 12:40:14 | 000,488,523 | ---- | M] (Stardock Corporation) -- C:\Program Files\Stardock\Object Desktop\WindowBlinds\wblind.dll
MOD - [2007.07.11 15:06:58 | 000,042,672 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\system32\wbsys.dll
MOD - [2007.07.11 15:06:58 | 000,028,740 | ---- | M] (Stardock.Net, Inc) -- C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbhelp.dll
MOD - [2004.01.12 01:00:00 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll
========== Win32 Services (SafeList) ==========
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.12.25 21:32:38 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.12.18 01:12:10 | 001,044,808 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009.12.12 12:27:20 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.11.13 12:28:04 | 000,110,592 | ---- | M] (WDC) [Auto | Stopped] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.06.16 09:58:08 | 000,020,480 | ---- | M] (Memeo) [Auto | Stopped] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe -- (WDSmartWareBackgroundService)
SRV - [2009.05.27 03:27:04 | 029,262,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$SQLEXPRESS) SQL Server (SQLEXPRESS)
SRV - [2009.03.12 18:36:24 | 000,086,016 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe -- (mi-raysat_3dsmax2010_32)
SRV - [2008.11.24 22:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2008.11.24 22:31:08 | 000,239,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2008.11.24 22:31:08 | 000,045,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.03.03 20:13:16 | 000,121,392 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\WINDOWS\system32\vmnetdhcp.exe -- (VMnetDHCP)
SRV - [2008.03.03 20:12:38 | 000,150,064 | ---- | M] (VMware, Inc.) [Disabled | Stopped] -- C:\WINDOWS\system32\vmnat.exe -- (VMware NAT Service)
SRV - [2008.03.03 20:12:34 | 000,109,104 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe -- (VMAuthdService)
SRV - [2007.11.30 17:23:02 | 000,186,928 | ---- | M] (VMware, Inc.) [On_Demand | Stopped] -- C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe -- (ufad-ws60)
SRV - [2007.05.28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007.03.23 10:02:52 | 000,269,104 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe -- (vmount2)
SRV - [2005.11.15 11:48:00 | 000,495,616 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2005.09.23 07:01:16 | 002,799,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon80)
SRV - [2004.04.15 11:05:40 | 001,949,696 | ---- | M] (Kerio Technologies) [Auto | Running] -- C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe -- (KPF4)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass)
DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs)
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)
DRV - [2010.05.28 23:00:01 | 000,017,480 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010.05.27 19:37:06 | 004,830,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.12.02 19:17:35 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.11.22 10:00:01 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2009.10.20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2009.10.14 08:24:44 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009.08.22 20:25:00 | 000,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32)
DRV - [2009.07.25 18:09:28 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.07.25 18:09:27 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009.07.15 10:46:14 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\etdrv.sys -- (etdrv)
DRV - [2009.06.02 15:26:28 | 000,099,856 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.05.22 18:30:40 | 000,502,208 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2009.02.23 00:16:22 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys -- (AODDriver)
DRV - [2009.02.13 12:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008.12.12 16:27:46 | 000,018,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys -- (LGII2CDevice)
DRV - [2008.12.12 16:27:46 | 000,014,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys -- (LGDDCDevice)
DRV - [2008.08.05 20:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008.04.13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008.04.13 18:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.03.03 20:14:20 | 000,034,864 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hcmon.sys -- (hcmon)
DRV - [2008.03.03 20:14:16 | 000,925,104 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmx86.sys -- (vmx86)
DRV - [2008.03.03 20:14:06 | 000,025,136 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetuserif.sys -- (VMnetuserif)
DRV - [2008.03.03 20:13:48 | 000,020,912 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMkbd.sys -- (vmkbd)
DRV - [2008.03.03 20:11:34 | 000,015,920 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmparport.sys -- (VMparport)
DRV - [2008.03.03 20:10:02 | 000,030,768 | R--- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vmusb.sys -- (vmusb)
DRV - [2008.03.03 20:10:02 | 000,028,592 | R--- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetbridge.sys -- (VMnetBridge)
DRV - [2008.03.03 20:10:02 | 000,016,816 | R--- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vmnetadapter.sys -- (VMnetAdapter)
DRV - [2007.11.30 17:22:16 | 000,019,248 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Program Files\VMware\VMware Workstation\vstor2-ws60.sys -- (vstor2-ws60)
DRV - [2007.11.06 10:06:48 | 000,131,672 | ---- | M] (Paragon) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2007.11.06 10:06:48 | 000,039,472 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hotcore3.sys -- (hotcore3)
DRV - [2007.11.06 10:06:48 | 000,032,080 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UimBus.sys -- (UimBus)
DRV - [2007.03.23 10:03:00 | 000,018,480 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys -- (vstor2)
DRV - [2006.07.24 10:15:04 | 004,353,024 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.07.20 15:39:24 | 000,041,728 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\jraid.sys -- (jraid)
DRV - [2006.07.12 08:56:00 | 000,248,192 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006.02.07 13:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2006.01.04 15:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2005.04.12 19:21:32 | 000,022,240 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2005.04.12 19:21:28 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2005.04.12 19:21:28 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2005.04.12 19:21:26 | 000,045,504 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2004.04.15 11:02:56 | 000,147,456 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fwdrv.sys -- (fwdrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 04 F3 76 94 4C B2 CA 01 [binary data]
IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 194.36.10.156:3124
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.36.0
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.2
FF - prefs.js..extensions.enabledItems: check4change-owner@mozdev.org:1.7
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: refspoof@mozdev.org:0.9.5
FF - prefs.js..extensions.enabledItems: wildpocketsloader@simopsstudios.com:1.0.9.15079
FF - prefs.js..network.proxy.http: "174.143.220.135"
FF - prefs.js..network.proxy.http_port: 80
FF - prefs.js..network.proxy.type: 1
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.13 18:35:20 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.06.30 14:40:39 | 000,000,000 | ---D | M]
[2009.12.31 13:19:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Extensions
[2009.12.31 13:19:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Extensions\contact@callgraph.in
[2010.04.07 15:48:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions
[2009.09.05 08:43:14 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.03.25 21:54:47 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.02.27 01:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\battlefieldheroespatcher@ea.com
[2010.02.18 19:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\check4change-owner@mozdev.org
[2009.10.15 16:02:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\refspoof@mozdev.org
[2009.12.27 23:48:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\wildpocketsloader@simopsstudios.com
[2010.04.07 15:48:23 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.28 16:23:21 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.28 16:23:21 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.28 16:23:21 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.28 16:23:21 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.28 16:23:21 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2010.07.02 15:25:04 | 000,000,394 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com
O1 - Hosts: 127.0.0.1 http://www.alcohol-soft.com
O1 - Hosts: 127.0.0.1 images.alcohol-soft.com
O1 - Hosts: 127.0.0.1 trial.alcohol-soft.com
O1 - Hosts: 127.0.0.1 alcohol-soft.com
O1 - Hosts: 127.0.0.1 static3.cdn.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit.s3.amazonaws.com
O1 - Hosts: 127.0.0.1 onlineconfigservice.ubi.com
O1 - Hosts: 127.0.0.1 orbitservice.ubi.com
O1 - Hosts: 127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE ()
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [GBB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (Gigabyte Technology Corp.)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe (HP)
O4 - HKLM..\Run: [nod32kui] C:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-484763869-630328440-839522115-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-484763869-630328440-839522115-1003..\Run: [Steam] d:\gamez\steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-484763869-630328440-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (PokerStars)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mvadvd.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (wbsys.dll) - C:\WINDOWS\System32\wbsys.dll (Stardock.Net, Inc)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\WBSrv: DllName - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll - C:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll (Stardock Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\kubik\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\kubik\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.05.22 18:17:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008.12.15 19:00:40 | 000,000,000 | ---D | M] - F:\autorun -- [ NTFS ]
O33 - MountPoints2\{64df66ac-b1b7-11de-b924-005056c00008}\Shell - "" = AutoRun
O33 - MountPoints2\{64df66ac-b1b7-11de-b924-005056c00008}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -- File not found
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\wd_windows_tools\WDSetup.exe -- [2008.06.19 13:46:02 | 001,760,476 | ---- | M] (Western Digital Corporation )
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: VIDC.VMnc - C:\WINDOWS\System32\vmnc.dll (VMware, Inc.)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (62782530557837312)
========== Files/Folders - Created Within 30 Days ==========
[2010.07.05 22:45:08 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\kubik\Plocha\OTL.exe
[2010.07.05 22:33:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ConeXware
[2010.07.05 22:05:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.07.05 22:03:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\kubik\Recent
[2010.07.05 16:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI
[2010.07.05 16:35:42 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.07.05 15:24:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Plocha\Account
[2010.07.03 23:37:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Dokumenty\Need for Speed World
[2010.07.03 22:40:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.07.02 23:56:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\InstallShield
[2010.07.02 16:04:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.07.02 15:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2010.07.02 15:41:39 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player
[2010.07.01 23:28:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Local Settings\Data aplikací\storage
[2010.07.01 22:18:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
[2010.06.25 13:10:57 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.06.19 10:00:38 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.18 21:44:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\kubik\Dokumenty\Filmy
[2010.06.18 21:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DivX
[2010.06.16 17:16:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Plocha\release
[2010.06.14 15:30:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
[2010.06.14 15:30:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
[2010.06.13 21:47:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Local Settings\Data aplikací\Electronic_Arts_Inc
[2010.06.13 21:46:27 | 005,901,552 | ---- | C] (Electronic Arts ) -- C:\Documents and Settings\kubik\Plocha\nfssetup.exe
[2010.06.12 19:50:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Plocha\Cardiak_-_Ovni_Trip_vauduan
[2010.06.12 11:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\kubik\Data aplikací\COWON
[2010.06.12 11:38:10 | 000,000,000 | ---D | C] -- C:\Program Files\JetAudio
[2010.06.10 16:45:18 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
========== Files - Modified Within 30 Days ==========
[2010.07.05 22:45:14 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\kubik\Plocha\OTL.exe
[2010.07.05 22:37:03 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-630328440-839522115-1003UA.job
[2010.07.05 22:33:21 | 000,001,711 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PowerArchiver.lnk
[2010.07.05 22:04:57 | 020,447,232 | ---- | M] () -- C:\Documents and Settings\kubik\ntuser.dat
[2010.07.05 22:00:03 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\CCleaner.lnk
[2010.07.05 21:03:45 | 000,000,566 | ---- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2010.07.05 17:48:58 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Adobe Formát BMP CS5 – předvolby
[2010.07.05 16:39:56 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.07.05 16:39:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.07.05 16:39:51 | 3220,754,432 | -HS- | M] () -- C:\hiberfil.sys
[2010.07.05 16:38:34 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\kubik\ntuser.ini
[2010.07.05 15:23:12 | 000,000,806 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\Config.wtf
[2010.07.05 12:29:06 | 002,104,824 | -H-- | M] () -- C:\Documents and Settings\kubik\Local Settings\Data aplikací\IconCache.db
[2010.07.05 10:42:46 | 003,821,824 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.07.05 10:42:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.07.04 19:07:32 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.07.04 16:28:43 | 000,048,640 | ---- | M] () -- C:\Documents and Settings\kubik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.03 22:40:19 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Need For Speed World.lnk
[2010.07.03 22:38:23 | 005,901,552 | ---- | M] (Electronic Arts ) -- C:\Documents and Settings\kubik\Plocha\nfssetup.exe
[2010.07.03 22:34:53 | 000,083,104 | ---- | M] () -- C:\Documents and Settings\kubik\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.07.03 10:50:34 | 235,170,495 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\avb 463.rar
[2010.07.02 16:08:04 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-KOLCEKUVKOMP-kubik.job
[2010.07.02 16:05:13 | 000,066,832 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.07.02 12:04:02 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Opera.lnk
[2010.07.02 00:09:53 | 000,000,138 | ---- | M] () -- C:\WINDOWS\System32\drivers\fwdrv.err
[2010.07.01 14:05:35 | 006,201,405 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\Crackfix.Repack-SKIDROW.rar
[2010.06.30 14:40:39 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.06.29 18:31:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.06.26 10:36:33 | 001,246,580 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\war.rar
[2010.06.25 13:26:20 | 000,111,726 | ---- | M] () -- C:\WINDOWS\War3Unin.dat
[2010.06.25 13:14:01 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.06.25 13:14:01 | 000,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif
[2010.06.24 14:48:50 | 000,036,310 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\mara_v_T.jpg
[2010.06.23 21:27:25 | 010,710,418 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\redsn0w_win_0.9.5b5-4.zip
[2010.06.23 15:26:41 | 001,152,624 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.23 15:26:41 | 000,493,288 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.23 15:26:41 | 000,490,036 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.23 15:26:41 | 000,102,616 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.23 15:26:41 | 000,090,814 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.22 20:15:57 | 000,203,228 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\toughguyfailpentattoos.jpg
[2010.06.22 18:12:06 | 000,000,975 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\1
[2010.06.22 17:39:57 | 000,000,532 | ---- | M] () -- C:\hpfr5550.xml
[2010.06.22 15:57:12 | 000,000,065 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\grub_output
[2010.06.19 12:32:27 | 000,003,215 | ---- | M] () -- C:\WINDOWS\System32\sdbackup.reg
[2010.06.19 12:28:08 | 000,000,851 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Need for Speed™ Most Wanted.lnk
[2010.06.16 17:16:27 | 002,354,738 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\release.rar
[2010.06.15 17:27:06 | 000,070,588 | ---- | M] () -- C:\boot_info_script055.sh
[2010.06.15 08:37:01 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-630328440-839522115-1003Core.job
[2010.06.06 11:01:06 | 124,622,508 | ---- | M] () -- C:\Documents and Settings\kubik\Plocha\mafia2-5-czdabing-f.wmv
========== Files Created - No Company Name ==========
[2010.07.05 22:33:21 | 000,001,711 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PowerArchiver.lnk
[2010.07.05 22:00:03 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\CCleaner.lnk
[2010.07.05 17:48:58 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\kubik\Data aplikací\Adobe Formát BMP CS5 – předvolby
[2010.07.05 15:24:08 | 000,000,806 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\Config.wtf
[2010.07.03 22:40:19 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Need For Speed World.lnk
[2010.07.03 10:33:09 | 235,170,495 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\avb 463.rar
[2010.07.02 16:08:04 | 000,000,342 | ---- | C] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-KOLCEKUVKOMP-kubik.job
[2010.07.02 16:05:13 | 000,066,832 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010.07.01 14:05:06 | 006,201,405 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\Crackfix.Repack-SKIDROW.rar
[2010.06.30 14:40:39 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.06.26 10:36:33 | 001,246,580 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\war.rar
[2010.06.25 13:11:25 | 000,111,726 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010.06.25 13:10:57 | 000,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif
[2010.06.24 14:48:50 | 000,036,310 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\mara_v_T.jpg
[2010.06.23 21:26:07 | 010,710,418 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\redsn0w_win_0.9.5b5-4.zip
[2010.06.22 20:15:57 | 000,203,228 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\toughguyfailpentattoos.jpg
[2010.06.22 18:12:06 | 000,000,975 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\1
[2010.06.22 15:57:08 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\grub_output
[2010.06.19 12:32:27 | 000,003,215 | ---- | C] () -- C:\WINDOWS\System32\sdbackup.reg
[2010.06.19 12:32:01 | 000,168,448 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\sd4hide.exe
[2010.06.19 12:28:08 | 000,000,851 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Need for Speed™ Most Wanted.lnk
[2010.06.16 17:16:19 | 002,354,738 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\release.rar
[2010.06.15 17:27:06 | 000,070,588 | ---- | C] () -- C:\boot_info_script055.sh
[2010.06.06 11:01:06 | 124,622,508 | ---- | C] () -- C:\Documents and Settings\kubik\Plocha\mafia2-5-czdabing-f.wmv
[2010.05.16 19:55:03 | 000,050,165 | ---- | C] () -- C:\WINDOWS\php.ini
[2010.03.27 11:49:52 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010.02.18 18:58:31 | 000,011,568 | ---- | C] () -- C:\WINDOWS\System32\drivers\UimFIO.sys
[2010.02.18 18:57:56 | 004,244,744 | ---- | C] () -- C:\WINDOWS\System32\qtp-mt334.dll
[2010.02.18 18:57:56 | 000,247,560 | ---- | C] () -- C:\WINDOWS\System32\prgiso.dll
[2010.02.18 18:57:56 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll
[2009.12.21 02:23:33 | 000,000,527 | ---- | C] () -- C:\WINDOWS\w32dasm8.ini
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.10.17 19:41:25 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.10.04 10:45:15 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2009.10.04 10:45:15 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2009.09.18 16:58:26 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.09.18 16:58:25 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.08.20 10:11:30 | 002,359,296 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll
[2009.08.20 10:11:30 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\TrackerNET.dll
[2009.07.25 18:09:28 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.07.25 18:09:27 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.07.06 20:23:19 | 000,024,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys
[2009.07.04 08:13:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2009.06.05 21:24:05 | 000,000,320 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.05.28 18:46:07 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009.05.24 10:47:45 | 000,138,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.05.24 10:46:47 | 000,000,268 | ---- | C] () -- C:\WINDOWS\game.ini
[2009.05.23 09:27:12 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.04.22 00:19:06 | 000,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2004.04.15 11:02:56 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\drivers\fwdrv.sys
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
========== LOP Check ==========
[2010.02.13 01:39:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2010.07.05 22:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ConeXware
[2009.12.02 19:17:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.06.05 20:54:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easy CD-DA Extractor
[2010.07.03 22:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2009.10.25 18:22:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Firefly Studios
[2010.05.20 14:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\HYL
[2010.02.08 20:38:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InterAction studios
[2010.05.16 18:42:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MySQL
[2009.06.06 14:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PreEmptive Solutions
[2010.07.02 15:52:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2009.07.21 14:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2009.07.25 18:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tages
[2009.09.12 10:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TechSmith
[2009.12.16 19:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.01.01 19:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2009.12.19 12:29:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2010.03.17 17:00:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Western Digital
[2009.06.06 10:33:20 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2009.12.19 12:29:35 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.02.13 01:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Autodesk
[2009.09.05 15:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Bioshock
[2009.08.27 13:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\BITS
[2010.04.26 19:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Call Graph
[2010.07.02 16:04:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.06.12 11:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\COWON
[2009.05.28 19:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DAEMON Tools Lite
[2010.04.24 23:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DVD2AVI Ripper
[2010.06.22 18:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\FileZilla
[2009.09.20 18:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\fltk.org
[2010.05.10 16:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GetRightToGo
[2009.09.20 13:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GHISLER
[2009.10.03 23:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\jabbim
[2009.11.04 15:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Leadertech
[2010.02.14 13:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LPECommon
[2010.03.20 10:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LucasArts
[2009.07.26 14:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MAXON
[2010.05.17 19:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth Files
[2010.05.14 17:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.14 15:30:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
[2010.06.14 15:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
[2009.06.25 22:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\OpenOffice.org
[2010.05.01 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Opera
[2009.07.21 14:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Publish Providers
[2009.12.31 13:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sedna Wireless
[2009.10.21 17:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sony
[2010.02.07 14:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TeamViewer
[2010.03.08 19:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\The Creative Assembly
[2009.10.25 21:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Thinstall
[2009.06.06 10:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TuneUp Software
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ubisoft
[2010.05.14 19:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\uTorrent
[2010.04.24 23:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Vso
[2010.03.17 17:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Western Digital
[2010.07.01 22:18:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
[2009.05.30 16:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik.KOLCEKUVKOMP\Data aplikací\Opera
[2010.02.06 17:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2009.12.25 21:28:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\TuneUp Software
[2010.07.05 21:03:45 | 000,000,566 | ---- | M] () -- C:\WINDOWS\Tasks\Automatic troubleshooting.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Documents and Settings\kubik\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2009.05.23 12:12:29 | 000,133,104 | ---- | M] (Google Inc.)
"Steam" = "d:\gamez\steam\steam.exe" -silent -- [2010.05.08 15:43:30 | 001,238,352 | ---- | M] (Valve Corporation)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2009.10.30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.07.02 16:08:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Adobe
[2009.09.13 10:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ahead
[2009.09.05 12:56:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Apple Computer
[2009.05.22 18:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\ATI
[2010.02.13 01:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Autodesk
[2009.09.05 15:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Bioshock
[2009.08.27 13:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\BITS
[2010.04.26 19:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Call Graph
[2010.07.02 16:04:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.07.04 00:17:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\codeblocks
[2010.06.12 11:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\COWON
[2009.05.28 19:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DAEMON Tools Lite
[2009.09.20 01:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DivX
[2010.04.24 23:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DVD2AVI Ripper
[2010.07.04 13:47:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\dvdcss
[2010.06.22 18:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\FileZilla
[2009.09.20 18:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\fltk.org
[2010.05.10 16:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GetRightToGo
[2009.09.20 13:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GHISLER
[2010.06.27 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Hamachi
[2009.08.07 21:41:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Help
[2009.05.22 18:21:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Identities
[2010.07.02 23:56:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\InstallShield
[2009.10.03 23:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\jabbim
[2009.11.04 15:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Leadertech
[2010.02.14 13:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LPECommon
[2010.03.20 10:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LucasArts
[2009.05.22 18:56:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Macromedia
[2009.07.26 14:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MAXON
[2010.06.04 15:19:38 | 000,000,000 | --SD | M] -- C:\Documents and Settings\kubik\Data aplikací\Microsoft
[2009.10.18 00:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla
[2009.08.21 17:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MozillaControl
[2010.05.17 19:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth Files
[2010.05.14 17:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.14 15:30:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
[2010.06.14 15:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
[2009.06.25 22:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\OpenOffice.org
[2010.05.01 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Opera
[2010.02.08 17:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\PSpad
[2009.07.21 14:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Publish Providers
[2009.09.05 15:46:28 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\kubik\Data aplikací\SecuROM
[2009.12.31 13:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sedna Wireless
[2010.06.24 15:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Skype
[2010.06.24 15:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\skypePM
[2009.10.21 17:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sony
[2009.05.30 20:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sun
[2010.02.07 14:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TeamViewer
[2010.03.08 19:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\The Creative Assembly
[2009.10.25 21:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Thinstall
[2009.11.29 20:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\THQ
[2009.06.06 10:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TuneUp Software
[2009.10.05 16:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\U3
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ubisoft
[2010.05.14 19:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\uTorrent
[2009.07.19 21:27:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ventrilo
[2010.07.04 13:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\vlc
[2010.07.05 10:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\VMware
[2010.04.24 23:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Vso
[2010.03.17 17:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Western Digital
[2010.06.05 21:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\WinRAR
[2009.10.05 17:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Xfire
[2010.07.01 22:18:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
< %APPDATA%\*.exe /s >
[2010.04.24 23:34:20 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\inst.exe
[2009.07.29 10:18:08 | 000,015,872 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\ARPPRODUCTICON.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut1_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut2_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut3_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:25:20 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2010.02.01 17:52:36 | 001,291,640 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe
[2006.05.24 13:36:38 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\cleanup.exe
[2006.08.24 08:44:52 | 002,600,960 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\Launchpad.exe
[2009.09.22 08:55:18 | 005,727,216 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\update.exe
[2009.09.11 02:00:30 | 003,111,824 | ---- | M] (Xfire Inc.) -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\Xfire.exe
[2009.09.11 02:00:32 | 000,074,128 | ---- | M] (Xfire Inc.) -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\xfire_exception.exe
< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.25 16:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009.12.02 19:17:35 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.05.22 20:06:12 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.05.22 20:06:12 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.05.22 20:06:11 | 000,495,616 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.07.05 16:36:17 | 000,018,905 | ---- | M] () -- C:\WINDOWS\system32\CCCInstall_201007051636177968.log
[2010.07.05 10:42:46 | 003,821,824 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.07.05 10:42:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< End of report >
[2010.02.13 01:39:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2010.07.05 22:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ConeXware
[2009.12.02 19:17:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.06.05 20:54:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easy CD-DA Extractor
[2010.07.03 22:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2009.10.25 18:22:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Firefly Studios
[2010.05.20 14:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\HYL
[2010.02.08 20:38:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InterAction studios
[2010.05.16 18:42:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MySQL
[2009.06.06 14:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PreEmptive Solutions
[2010.07.02 15:52:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2009.07.21 14:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2009.07.25 18:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tages
[2009.09.12 10:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TechSmith
[2009.12.16 19:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.01.01 19:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2009.12.19 12:29:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2010.03.17 17:00:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Western Digital
[2009.06.06 10:33:20 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2009.12.19 12:29:35 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.02.13 01:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Autodesk
[2009.09.05 15:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Bioshock
[2009.08.27 13:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\BITS
[2010.04.26 19:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Call Graph
[2010.07.02 16:04:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.06.12 11:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\COWON
[2009.05.28 19:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DAEMON Tools Lite
[2010.04.24 23:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DVD2AVI Ripper
[2010.06.22 18:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\FileZilla
[2009.09.20 18:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\fltk.org
[2010.05.10 16:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GetRightToGo
[2009.09.20 13:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GHISLER
[2009.10.03 23:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\jabbim
[2009.11.04 15:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Leadertech
[2010.02.14 13:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LPECommon
[2010.03.20 10:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LucasArts
[2009.07.26 14:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MAXON
[2010.05.17 19:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth Files
[2010.05.14 17:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.14 15:30:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
[2010.06.14 15:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
[2009.06.25 22:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\OpenOffice.org
[2010.05.01 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Opera
[2009.07.21 14:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Publish Providers
[2009.12.31 13:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sedna Wireless
[2009.10.21 17:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sony
[2010.02.07 14:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TeamViewer
[2010.03.08 19:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\The Creative Assembly
[2009.10.25 21:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Thinstall
[2009.06.06 10:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TuneUp Software
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ubisoft
[2010.05.14 19:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\uTorrent
[2010.04.24 23:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Vso
[2010.03.17 17:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Western Digital
[2010.07.01 22:18:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
[2009.05.30 16:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik.KOLCEKUVKOMP\Data aplikací\Opera
[2010.02.06 17:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2009.12.25 21:28:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\TuneUp Software
[2010.07.05 21:03:45 | 000,000,566 | ---- | M] () -- C:\WINDOWS\Tasks\Automatic troubleshooting.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Documents and Settings\kubik\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2009.05.23 12:12:29 | 000,133,104 | ---- | M] (Google Inc.)
"Steam" = "d:\gamez\steam\steam.exe" -silent -- [2010.05.08 15:43:30 | 001,238,352 | ---- | M] (Valve Corporation)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2009.10.30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.07.02 16:08:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Adobe
[2009.09.13 10:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ahead
[2009.09.05 12:56:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Apple Computer
[2009.05.22 18:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\ATI
[2010.02.13 01:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Autodesk
[2009.09.05 15:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Bioshock
[2009.08.27 13:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\BITS
[2010.04.26 19:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Call Graph
[2010.07.02 16:04:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.07.04 00:17:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\codeblocks
[2010.06.12 11:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\COWON
[2009.05.28 19:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DAEMON Tools Lite
[2009.09.20 01:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DivX
[2010.04.24 23:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\DVD2AVI Ripper
[2010.07.04 13:47:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\dvdcss
[2010.06.22 18:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\FileZilla
[2009.09.20 18:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\fltk.org
[2010.05.10 16:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GetRightToGo
[2009.09.20 13:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\GHISLER
[2010.06.27 21:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Hamachi
[2009.08.07 21:41:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Help
[2009.05.22 18:21:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Identities
[2010.07.02 23:56:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\InstallShield
[2009.10.03 23:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\jabbim
[2009.11.04 15:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Leadertech
[2010.02.14 13:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LPECommon
[2010.03.20 10:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\LucasArts
[2009.05.22 18:56:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Macromedia
[2009.07.26 14:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MAXON
[2010.06.04 15:19:38 | 000,000,000 | --SD | M] -- C:\Documents and Settings\kubik\Data aplikací\Microsoft
[2009.10.18 00:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Mozilla
[2009.08.21 17:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\MozillaControl
[2010.05.17 19:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth Files
[2010.05.14 17:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.14 15:30:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World
[2010.06.14 15:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Need for Speed World Online
[2009.06.25 22:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\OpenOffice.org
[2010.05.01 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Opera
[2010.02.08 17:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\PSpad
[2009.07.21 14:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Publish Providers
[2009.09.05 15:46:28 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\kubik\Data aplikací\SecuROM
[2009.12.31 13:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sedna Wireless
[2010.06.24 15:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Skype
[2010.06.24 15:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\skypePM
[2009.10.21 17:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sony
[2009.05.30 20:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Sun
[2010.02.07 14:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TeamViewer
[2010.03.08 19:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\The Creative Assembly
[2009.10.25 21:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Thinstall
[2009.11.29 20:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\THQ
[2009.06.06 10:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\TuneUp Software
[2009.10.05 16:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\U3
[2010.04.04 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ubisoft
[2010.05.14 19:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\uTorrent
[2009.07.19 21:27:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Ventrilo
[2010.07.04 13:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\vlc
[2010.07.05 10:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\VMware
[2010.04.24 23:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Vso
[2010.03.17 17:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Western Digital
[2010.06.05 21:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\WinRAR
[2009.10.05 17:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\Xfire
[2010.07.01 22:18:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\kubik\Data aplikací\YoudaGames
< %APPDATA%\*.exe /s >
[2010.04.24 23:34:20 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\inst.exe
[2009.07.29 10:18:08 | 000,015,872 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\ARPPRODUCTICON.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut1_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut2_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:35:33 | 000,018,718 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut3_8315396A5EA1419DBEC4978284BDF556.exe
[2009.05.22 18:25:20 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\kubik\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2010.02.01 17:52:36 | 001,291,640 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\kubik\Data aplikací\Mozilla\Firefox\Profiles\wpvb5jrv.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe
[2006.05.24 13:36:38 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\cleanup.exe
[2006.08.24 08:44:52 | 002,600,960 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\Launchpad.exe
[2009.09.22 08:55:18 | 005,727,216 | ---- | M] () -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\update.exe
[2009.09.11 02:00:30 | 003,111,824 | ---- | M] (Xfire Inc.) -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\Xfire.exe
[2009.09.11 02:00:32 | 000,074,128 | ---- | M] (Xfire Inc.) -- C:\Documents and Settings\kubik\Data aplikací\U3\0E90C6714261A952\020BD180-AF7E-413C-9635-CFA208B739AF\Exec\xfire_exception.exe
< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2009.05.29 14:53:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.25 16:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009.12.02 19:17:35 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.05.22 20:06:12 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.05.22 20:06:12 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.05.22 20:06:11 | 000,495,616 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.07.05 16:36:17 | 000,018,905 | ---- | M] () -- C:\WINDOWS\system32\CCCInstall_201007051636177968.log
[2010.07.05 10:42:46 | 003,821,824 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.07.05 10:42:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< End of report >
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
Problém je v rychlosti PC. Internet valí krásně(teda spíš tak jak ho sem kyslíci pouštěj)
Re: Preventivka
Tohle mate umyslne :"ProxyServer" = 194.36.10.156:3124
FF - prefs.js..network.proxy.http: "174.143.220.135"
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
To
FF - prefs.js..network.proxy.http: "174.143.220.135"
byla proxy z FireFoxu, kterou jsem asi zapomněl odstranit - FF teď nepoužívám, takže mi tam nijak nevadilo. To druhé co je netuším.
FF - prefs.js..network.proxy.http: "174.143.220.135"
byla proxy z FireFoxu, kterou jsem asi zapomněl odstranit - FF teď nepoužívám, takže mi tam nijak nevadilo. To druhé co je netuším.
Re: Preventivka
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl FF - prefs.js..network.proxy.http: "174.143.220.135" FF - prefs.js..network.proxy.http_port: 80 FF - prefs.js..network.proxy.type: 1 IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 194.36.10.156:3124 DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass) DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs) DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32) IE - HKU\S-1-5-21-484763869-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 04 F3 76 94 4C B2 CA 01 [binary data] O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mvadvd.cab (Reg Error: Key error.) :files C:\WINDOWS\system32\*.tmp.dll /s C:\WINDOWS\system32\SET*.tmp /s C:\WINDOWS\*.tmp /s :reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64df66ac-b1b7-11de-b924-005056c00008}] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] ""=- :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [CLEARALLRESTOREPOINTS]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
Tady je log
All processes killed
========== OTL ==========
Prefs.js: "174.143.220.135" removed from network.proxy.http
Prefs.js: 80 removed from network.proxy.http_port
Prefs.js: 1 removed from network.proxy.type
HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Service InCDRm stopped successfully!
Service InCDRm deleted successfully!
File C:\WINDOWS\System32\drivers\InCDRm.sys not found.
Service InCDPass stopped successfully!
Service InCDPass deleted successfully!
File C:\WINDOWS\System32\drivers\InCDPass.sys not found.
Service InCDFs stopped successfully!
Service InCDFs deleted successfully!
File C:\WINDOWS\System32\drivers\InCDFs.sys not found.
Service Aspi32 stopped successfully!
Service Aspi32 deleted successfully!
File C:\WINDOWS\System32\drivers\aspi32.sys not found.
HKU\S-1-5-21-484763869-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\ deleted successfully.
Starting removal of ActiveX control {41564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmvadvd.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{41564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP187.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E8A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2A2C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4CF0.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4D6.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E54.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP653.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP672.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF6.tmp folder moved successfully.
C:\WINDOWS\CSC\csc1.tmp moved successfully.
C:\WINDOWS\Installer\MSI46.tmp moved successfully.
File move failed. C:\WINDOWS\Temp\~DFF21.tmp scheduled to be moved on reboot.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64df66ac-b1b7-11de-b924-005056c00008}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64df66ac-b1b7-11de-b924-005056c00008}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: kubik
->Temp folder emptied: 96903311 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3826423 bytes
->Google Chrome cache emptied: 6419156 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 1408 bytes
User: kubik.KOLCEKUVKOMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 32768 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 147456 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 102,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
->Flash cache emptied: 0 bytes
User: kubik
->Flash cache emptied: 0 bytes
User: kubik.KOLCEKUVKOMP
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\: LSP stack updated.
OTL by OldTimer - Version 3.2.7.1 log created on 07062010_092605
Files\Folders moved on Reboot...
C:\WINDOWS\Temp\~DFF21.tmp moved successfully.
File\Folder C:\Documents and Settings\NetworkService\Local Settings\Temp\Perflib_Perfdata_924.dat not found!
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\Temp\~DFF21.tmp not found!
File\Folder C:\Documents and Settings\NetworkService\Local Settings\Temp\Perflib_Perfdata_924.dat not found!
Registry entries deleted on Reboot...
Je v něm vidět, že byl smazán a vytvořen nový hosts soubor. Předpokládám, že už ten starý asi obnovit nepůjde, že?
//edit dobrý už jsem ten původní hosts našel.
//edit2 systém se sám nerestartoval, tak jsem to udělal ručně a start systém byl rychlejší, než předtím. Jneže pořád se mi při spuštění spouští některé nežádoucí programy. A to tyhle
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
Jak se jich zbavit? V CCleaneru to nešlo a StartUpLite už vůbec ne.
All processes killed
========== OTL ==========
Prefs.js: "174.143.220.135" removed from network.proxy.http
Prefs.js: 80 removed from network.proxy.http_port
Prefs.js: 1 removed from network.proxy.type
HKU\S-1-5-21-484763869-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Service InCDRm stopped successfully!
Service InCDRm deleted successfully!
File C:\WINDOWS\System32\drivers\InCDRm.sys not found.
Service InCDPass stopped successfully!
Service InCDPass deleted successfully!
File C:\WINDOWS\System32\drivers\InCDPass.sys not found.
Service InCDFs stopped successfully!
Service InCDFs deleted successfully!
File C:\WINDOWS\System32\drivers\InCDFs.sys not found.
Service Aspi32 stopped successfully!
Service Aspi32 deleted successfully!
File C:\WINDOWS\System32\drivers\aspi32.sys not found.
HKU\S-1-5-21-484763869-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\ deleted successfully.
Starting removal of ActiveX control {41564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmvadvd.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{41564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP187.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E8A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2A2C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4CF0.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4D6.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E54.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP653.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP672.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF6.tmp folder moved successfully.
C:\WINDOWS\CSC\csc1.tmp moved successfully.
C:\WINDOWS\Installer\MSI46.tmp moved successfully.
File move failed. C:\WINDOWS\Temp\~DFF21.tmp scheduled to be moved on reboot.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64df66ac-b1b7-11de-b924-005056c00008}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64df66ac-b1b7-11de-b924-005056c00008}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: kubik
->Temp folder emptied: 96903311 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3826423 bytes
->Google Chrome cache emptied: 6419156 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 1408 bytes
User: kubik.KOLCEKUVKOMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 32768 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 147456 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 102,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
->Flash cache emptied: 0 bytes
User: kubik
->Flash cache emptied: 0 bytes
User: kubik.KOLCEKUVKOMP
User: LocalService
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\: LSP stack updated.
OTL by OldTimer - Version 3.2.7.1 log created on 07062010_092605
Files\Folders moved on Reboot...
C:\WINDOWS\Temp\~DFF21.tmp moved successfully.
File\Folder C:\Documents and Settings\NetworkService\Local Settings\Temp\Perflib_Perfdata_924.dat not found!
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\Temp\~DFF21.tmp not found!
File\Folder C:\Documents and Settings\NetworkService\Local Settings\Temp\Perflib_Perfdata_924.dat not found!
Registry entries deleted on Reboot...
Je v něm vidět, že byl smazán a vytvořen nový hosts soubor. Předpokládám, že už ten starý asi obnovit nepůjde, že?
//edit dobrý už jsem ten původní hosts našel.
//edit2 systém se sám nerestartoval, tak jsem to udělal ručně a start systém byl rychlejší, než předtím. Jneže pořád se mi při spuštění spouští některé nežádoucí programy. A to tyhle
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
Jak se jich zbavit? V CCleaneru to nešlo a StartUpLite už vůbec ne.
Re: Preventivka
Za hosts se omlouvam, vetsinou je davame do puvodni podoby, pac neni zrejme jestli je upraven umyslne ci haveti... Sluzby po startu:
Roli píše: Tak že přes Start >> Spustit >> napiš - services.msc >> OK. Najdi službu, klikni na ni pravým myšítkem, zvol vlastnosti, na další kartě nejprve službu zastav tlačítkem Zastavit a u položky Typ spouštění zvol Zakázáno.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivka
Není se za co omlouvat. Služby jsem zakázal, tak uvidíme po restartu co to udělá. Jakmile restartuju, tak sem napíšu.
Re: Preventivka
Ok, dejte vedet a i celkovy stav PC napiste, at navrhnu dalsi postup - zda se dal v nem "hrabat" skenera nebo je hotovo
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?