Logfile of random's system information tool 1.08 (written by random/random)
Run by Ivan at 2010-09-13 14:46:59
Microsoft Windows 7 Ultimate
System drive C: has 49 GB (65%) free of 75 GB
Total RAM: 4096 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:47:11, on 13.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\Ivan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=%windows%\system32\userinit.exe,
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5231 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Essentials\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Opera\opera.exe"
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\System32\svchost.exe -k swprv
"C:\Users\Ivan\AppData\Local\Opera\Opera\temporary_downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\AWC AutoSweep.job
C:\Windows\tasks\AWC Update.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-06-01 1446504]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-03 98304]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-09-13 14:47:00 ----D---- C:\Program Files\trend micro
2010-09-13 14:46:59 ----D---- C:\rsit
2010-09-13 14:43:26 ----A---- C:\Windows\SYSWOW64\javaws.exe
2010-09-13 14:43:26 ----A---- C:\Windows\SYSWOW64\javaw.exe
2010-09-13 14:43:26 ----A---- C:\Windows\SYSWOW64\java.exe
2010-09-13 14:40:26 ----RD---- C:\32788R22FWJFW
2010-09-13 09:00:51 ----D---- C:\Windows\Sun
2010-09-13 08:59:49 ----D---- C:\ProgramData\Sun
2010-09-13 08:58:50 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2010-09-13 08:58:32 ----D---- C:\Program Files (x86)\Java
2010-09-12 12:10:40 ----A---- C:\Windows\system32\drivers\snapman.sys
2010-09-12 12:10:33 ----D---- C:\Program Files (x86)\Acronis
2010-09-12 10:29:36 ----A---- C:\Windows\SYSWOW64\DfSdkBt32.exe
2010-09-12 10:29:36 ----A---- C:\Windows\system32\DfSdkBt.exe
2010-09-12 10:29:02 ----D---- C:\Program Files (x86)\Ashampoo
2010-09-12 10:26:47 ----D---- C:\ProgramData\Nero
2010-09-12 10:21:04 ----D---- C:\Program Files (x86)\Nero
2010-09-12 10:06:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-09-12 10:05:57 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-09-12 10:05:26 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-09-12 10:04:52 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-09-12 10:04:03 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-09-12 10:03:35 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-09-12 09:46:49 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-09-12 09:46:17 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-09-12 09:45:30 ----D---- C:\Users\Ivan\AppData\Roaming\DAEMON Tools Lite
2010-09-12 09:45:25 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-09-12 09:39:49 ----D---- C:\Program Files (x86)\Windows Doctor
2010-09-12 08:43:23 ----D---- C:\Users\Ivan\AppData\Roaming\URSoft
2010-09-12 08:43:22 ----AD---- C:\ProgramData\TEMP
2010-09-12 08:43:11 ----D---- C:\Program Files (x86)\Your Uninstaller 2010
2010-09-12 08:10:15 ----D---- C:\Program Files (x86)\Lavalys
2010-09-11 21:09:28 ----D---- C:\Windows\SYSWOW64\RTCOM
2010-09-11 21:08:21 ----A---- C:\Windows\system32\WavesGUILib.dll
2010-09-11 21:08:21 ----A---- C:\Windows\system32\SRSWOW64.dll
2010-09-11 21:08:21 ----A---- C:\Windows\system32\SRSTSX64.dll
2010-09-11 21:08:21 ----A---- C:\Windows\system32\SRSTSH64.dll
2010-09-11 21:08:21 ----A---- C:\Windows\system32\SRSHP64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RtPgEx64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RtkCfg64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RtkAPO64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RtkApi64.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RTEEP64A.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RTEEL64A.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RTEEG64A.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\RTEED64A.dll
2010-09-11 21:08:13 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2010-09-11 21:08:12 ----A---- C:\Windows\SYSWOW64\MBAPO32.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\RTCOM64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\RP3DHT64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\RP3DAA64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\RCoInst64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\MBWrp64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\MBppld64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\MBPPCn64.dll
2010-09-11 21:08:12 ----A---- C:\Windows\system32\MBAPO64.dll
2010-09-11 21:08:11 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-09-11 21:08:11 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-09-11 21:08:09 ----A---- C:\Windows\system32\FMAPO64.dll
2010-09-11 21:08:07 ----D---- C:\Program Files (x86)\Realtek
2010-09-11 21:08:07 ----A---- C:\Windows\system32\AERTAR64.dll
2010-09-11 21:08:07 ----A---- C:\Windows\system32\AERTAC64.dll
2010-09-11 21:08:00 ----A---- C:\Windows\RtlExUpd.dll
2010-09-11 21:07:12 ----D---- C:\Program Files\Realtek
2010-09-11 21:06:43 ----A---- C:\Windows\system32\RtkHDM64.dll
2010-09-11 21:06:42 ----A---- C:\Windows\system32\RTEEP64H.dll
2010-09-11 21:06:42 ----A---- C:\Windows\system32\RTEEL64H.dll
2010-09-11 21:06:42 ----A---- C:\Windows\system32\RTEEG64H.dll
2010-09-11 21:06:42 ----A---- C:\Windows\system32\RTEED64H.dll
2010-09-11 21:06:42 ----A---- C:\Windows\system32\drivers\RtHDMIVX.sys
2010-09-11 21:06:41 ----A---- C:\Windows\system32\RHDMEx64.dll
2010-09-11 21:06:41 ----A---- C:\Windows\system32\RHCoInst64.dll
2010-09-11 21:06:41 ----A---- C:\Windows\system32\RH3DHT64.dll
2010-09-11 21:06:41 ----A---- C:\Windows\system32\RH3DAA64.dll
2010-09-11 21:06:37 ----HD---- C:\Program Files (x86)\Temp
2010-09-11 20:27:40 ----D---- C:\Program Files (x86)\Driver-Soft
2010-09-11 19:37:45 ----D---- C:\Program Files (x86)\The KMPlayer
2010-09-11 19:20:36 ----D---- C:\Program Files (x86)\CCleaner
2010-09-11 19:15:36 ----D---- C:\Program Files (x86)\Microsoft Antimalware
2010-09-11 19:15:31 ----D---- C:\Program Files\Microsoft Security Essentials
2010-09-11 19:01:42 ----D---- C:\Users\Ivan\AppData\Roaming\IObit
2010-09-11 19:01:42 ----D---- C:\Program Files (x86)\IObit
2010-09-11 18:55:20 ----D---- C:\Users\Ivan\AppData\Roaming\Zoner
2010-09-11 18:50:15 ----D---- C:\Program Files (x86)\Zoner
2010-09-11 18:42:37 ----D---- C:\Program Files (x86)\MozBackup
2010-09-11 18:30:50 ----D---- C:\ProgramData\Adobe
2010-09-11 18:30:48 ----D---- C:\Program Files (x86)\Adobe
2010-09-11 18:27:17 ----D---- C:\Users\Ivan\AppData\Roaming\Macromedia
2010-09-11 18:27:17 ----D---- C:\Users\Ivan\AppData\Roaming\Adobe
2010-09-11 18:12:56 ----D---- C:\Windows\SYSWOW64\Macromed
2010-09-11 18:11:39 ----D---- C:\Users\Ivan\AppData\Roaming\WinRAR
2010-09-11 18:11:19 ----D---- C:\Program Files (x86)\WinRAR
2010-09-11 18:08:37 ----D---- C:\Users\Ivan\AppData\Roaming\GHISLER
2010-09-11 18:08:37 ----D---- C:\Program Files (x86)\totalcmd
2010-09-11 18:08:37 ----A---- C:\Windows\UC.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\RAR.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\PKZIP.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\PKUNZIP.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\NOCLOSE.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\LHA.PIF
2010-09-11 18:08:37 ----A---- C:\Windows\ARJ.PIF
2010-09-11 18:01:51 ----D---- C:\Program Files (x86)\uTorrent
2010-09-11 18:01:11 ----D---- C:\Users\Ivan\AppData\Roaming\uTorrent
2010-09-11 13:37:40 ----D---- C:\Program Files (x86)\Microsoft Works
2010-09-11 13:37:24 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2010-09-11 13:37:00 ----D---- C:\Windows\PCHEALTH
2010-09-11 13:33:36 ----D---- C:\Program Files\Microsoft Office
2010-09-11 13:33:31 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2010-09-11 13:32:16 ----D---- C:\ProgramData\Microsoft Help
2010-09-11 13:32:16 ----D---- C:\Program Files (x86)\Microsoft Office
2010-09-11 13:09:42 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-09-11 13:09:27 ----A---- C:\Windows\system32\drivers\AtiHdmi.sys
2010-09-11 13:09:13 ----A---- C:\Windows\system32\ATIDEMGX.dll
2010-09-11 13:01:40 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-09-11 13:00:48 ----D---- C:\Users\Ivan\AppData\Roaming\ATI
2010-09-11 13:00:48 ----D---- C:\ProgramData\ATI
2010-09-11 12:55:15 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-09-11 12:30:33 ----D---- C:\Windows\SYSWOW64\Wat
2010-09-11 12:30:33 ----D---- C:\Windows\system32\Wat
2010-09-11 12:19:59 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2010-09-11 12:19:59 ----A---- C:\Windows\system32\msv1_0.dll
2010-09-11 12:14:45 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2010-09-11 12:14:45 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2010-09-11 12:14:45 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2010-09-11 12:14:45 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2010-09-11 12:14:45 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2010-09-11 12:14:45 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-09-11 12:14:45 ----A---- C:\Windows\system32\PresentationHost.exe
2010-09-11 12:14:45 ----A---- C:\Windows\system32\netfxperf.dll
2010-09-11 12:14:45 ----A---- C:\Windows\system32\mscoree.dll
2010-09-11 12:14:45 ----A---- C:\Windows\system32\dfshim.dll
2010-09-11 12:14:17 ----A---- C:\Windows\system32\browserchoice.exe
2010-09-11 12:10:36 ----D---- C:\Users\Ivan\AppData\Roaming\Mozilla
2010-09-11 12:10:28 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-09-11 12:08:16 ----D---- C:\Users\Ivan\AppData\Roaming\Opera
2010-09-11 12:08:11 ----D---- C:\Program Files (x86)\Opera
2010-09-11 12:05:33 ----A---- C:\Windows\system32\MRT.exe
2010-09-11 12:03:42 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2010-09-11 12:03:42 ----A---- C:\Windows\system32\asycfilt.dll
2010-09-11 12:03:39 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-09-11 12:03:39 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-09-11 12:03:39 ----A---- C:\Windows\system32\drivers\srv.sys
2010-09-11 12:03:36 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2010-09-11 12:03:36 ----A---- C:\Windows\system32\ntdll.dll
2010-09-11 12:03:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2010-09-11 12:03:28 ----A---- C:\Windows\system32\vbscript.dll
2010-09-11 12:03:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-09-11 12:03:24 ----A---- C:\Windows\system32\schannel.dll
2010-09-11 12:03:20 ----A---- C:\Windows\system32\wmp.dll
2010-09-11 12:03:19 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-09-11 12:03:19 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2010-09-11 12:03:19 ----A---- C:\Windows\system32\CertEnroll.dll
2010-09-11 12:03:18 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-09-11 12:03:18 ----A---- C:\Windows\system32\wmploc.DLL
2010-09-11 12:02:59 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2010-09-11 12:02:59 ----A---- C:\Windows\SYSWOW64\secproc.dll
2010-09-11 12:02:59 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2010-09-11 12:02:59 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2010-09-11 12:02:59 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-09-11 12:02:59 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-09-11 12:02:59 ----A---- C:\Windows\system32\secproc_isv.dll
2010-09-11 12:02:59 ----A---- C:\Windows\system32\secproc.dll
2010-09-11 12:02:59 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-09-11 12:02:59 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-09-11 12:02:59 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-09-11 12:02:59 ----A---- C:\Windows\system32\RMActivate.exe
2010-09-11 12:02:56 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2010-09-11 12:02:55 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2010-09-11 12:02:53 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2010-09-11 12:02:51 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2010-09-11 12:02:27 ----A---- C:\Windows\system32\shell32.dll
2010-09-11 12:02:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2010-09-11 12:02:16 ----A---- C:\Windows\system32\inetcomm.dll
2010-09-11 12:02:15 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-09-11 12:02:15 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2010-09-11 12:02:15 ----A---- C:\Windows\system32\t2embed.dll
2010-09-11 12:02:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-09-11 12:02:02 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-11 12:02:01 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2010-09-11 12:01:54 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2010-09-11 12:01:52 ----A---- C:\Windows\system32\mshtml.dll
2010-09-11 12:01:44 ----A---- C:\Windows\system32\ieframe.dll
2010-09-11 12:01:40 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-09-11 12:01:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-09-11 12:01:40 ----A---- C:\Windows\system32\urlmon.dll
2010-09-11 12:01:40 ----A---- C:\Windows\system32\mstime.dll
2010-09-11 12:01:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-09-11 12:01:39 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-09-11 12:01:39 ----A---- C:\Windows\system32\wininet.dll
2010-09-11 12:01:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-09-11 12:01:38 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-11 12:01:35 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-09-11 12:01:35 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-09-11 12:01:35 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-09-11 12:01:35 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-11 12:01:35 ----A---- C:\Windows\system32\iepeers.dll
2010-09-11 12:01:34 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-09-11 12:01:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-09-11 12:01:34 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-09-11 12:01:34 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-11 12:01:34 ----A---- C:\Windows\system32\jsproxy.dll
2010-09-11 12:01:34 ----A---- C:\Windows\system32\ieui.dll
2010-09-11 12:01:26 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2010-09-11 12:01:22 ----A---- C:\Windows\system32\oleaut32.dll
2010-09-11 12:01:14 ----A---- C:\Windows\SYSWOW64\explorer.exe
2010-09-11 12:01:14 ----A---- C:\Windows\system32\winlogon.exe
2010-09-11 12:01:14 ----A---- C:\Windows\explorer.exe
2010-09-11 12:01:06 ----A---- C:\Windows\SYSWOW64\wow32.dll
2010-09-11 12:01:06 ----A---- C:\Windows\SYSWOW64\user.exe
2010-09-11 12:01:06 ----A---- C:\Windows\SYSWOW64\setup16.exe
2010-09-11 12:01:06 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2010-09-11 12:01:06 ----A---- C:\Windows\SYSWOW64\instnm.exe
2010-09-11 12:01:06 ----A---- C:\Windows\system32\wow64.dll
2010-09-11 12:01:00 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2010-09-11 12:01:00 ----A---- C:\Windows\system32\rtutils.dll
2010-09-11 12:00:58 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-09-11 12:00:58 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-09-11 12:00:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-09-11 12:00:52 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2010-09-11 12:00:50 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-09-11 12:00:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-09-11 12:00:44 ----A---- C:\Windows\system32\cdd.dll
2010-09-11 12:00:38 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2010-09-11 12:00:38 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-09-11 12:00:38 ----A---- C:\Windows\system32\psisdecd.dll
2010-09-11 12:00:38 ----A---- C:\Windows\system32\msdri.dll
2010-09-11 12:00:38 ----A---- C:\Windows\system32\CPFilters.dll
2010-09-11 12:00:29 ----A---- C:\Windows\SYSWOW64\quartz.dll
2010-09-11 12:00:29 ----A---- C:\Windows\system32\quartz.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\system32\tsbyuv.dll
2010-09-11 12:00:28 ----A---- C:\Windows\system32\msyuv.dll
2010-09-11 12:00:28 ----A---- C:\Windows\system32\msvidc32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\system32\msrle32.dll
2010-09-11 12:00:28 ----A---- C:\Windows\system32\iyuv_32.dll
2010-09-11 12:00:17 ----A---- C:\Windows\system32\win32k.sys
2010-09-11 12:00:10 ----A---- C:\Windows\system32\msxml3.dll
2010-09-11 12:00:09 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2010-09-11 12:00:03 ----A---- C:\Windows\system32\jscript.dll
2010-09-11 12:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2010-09-11 11:59:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2010-09-11 11:59:56 ----A---- C:\Windows\SYSWOW64\secur32.dll
2010-09-11 11:59:56 ----A---- C:\Windows\system32\lsasrv.dll
2010-09-11 11:59:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-09-11 11:59:41 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2010-09-11 11:59:41 ----A---- C:\Windows\system32\msasn1.dll
2010-09-11 11:59:40 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2010-09-11 11:59:40 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2010-09-11 11:59:40 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2010-09-11 11:59:40 ----A---- C:\Windows\system32\fontsub.dll
2010-09-11 11:59:40 ----A---- C:\Windows\system32\atmlib.dll
2010-09-11 11:59:40 ----A---- C:\Windows\system32\atmfd.dll
2010-09-11 11:59:37 ----A---- C:\Windows\system32\drivers\usbhub.sys
2010-09-11 11:59:37 ----A---- C:\Windows\system32\drivers\usbehci.sys
2010-09-11 11:59:33 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-09-11 11:59:33 ----A---- C:\Windows\system32\tzres.dll
2010-09-11 11:51:37 ----D---- C:\Windows\Panther
2010-09-11 11:44:29 ----SHD---- C:\Windows\Installer
2010-09-11 11:43:30 ----D---- C:\Program Files\ATI Technologies
2010-09-11 11:43:18 ----D---- C:\Program Files\ATI
2010-09-11 11:43:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2010-09-11 11:43:07 ----A---- C:\Windows\system32\wintrust.dll
2010-09-11 11:41:29 ----A---- C:\Windows\SYSWOW64\cabview.dll
2010-09-11 11:41:29 ----A---- C:\Windows\system32\cabview.dll
2010-09-11 11:39:53 ----N---- C:\Windows\system32\MpSigStub.exe
2010-09-11 11:28:59 ----D---- C:\Program Files (x86)\ATI Technologies
2010-09-11 11:28:58 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-09-11 11:24:26 ----D---- C:\Users\Ivan\AppData\Roaming\Identities
2010-09-11 11:20:48 ----SD---- C:\Users\Ivan\AppData\Roaming\Microsoft
2010-09-11 11:20:48 ----D---- C:\Users\Ivan\AppData\Roaming\Media Center Programs
2010-09-11 11:18:26 ----SHD---- C:\ProgramData\Šablony
2010-09-11 11:18:26 ----SHD---- C:\ProgramData\Oblíbené položky
2010-09-11 11:18:26 ----SHD---- C:\ProgramData\Nabídka Start
2010-09-11 11:18:26 ----SHD---- C:\ProgramData\Dokumenty
2010-09-11 11:18:26 ----SHD---- C:\ProgramData\Data aplikací
2010-09-11 11:18:25 ----SHD---- C:\ProgramData\Plocha
2010-09-11 11:00:26 ----D---- C:\Windows\SoftwareDistribution
2010-09-11 10:55:15 ----D---- C:\Windows\Prefetch
2010-09-10 22:12:23 ----SHD---- C:\Config.Msi
2010-08-27 21:57:20 ----RHD---- C:\MSOCache
2010-08-23 17:12:40 ----D---- C:\FR90PE_VOL
2010-08-22 18:30:39 ----D---- C:\Temp
2010-08-22 11:24:15 ----D---- C:\ATI
2010-08-22 11:23:12 ----D---- C:\NVIDIA
======List of files/folders modified in the last 1 months======
2010-09-13 14:47:00 ----RD---- C:\Program Files
2010-09-13 14:46:56 ----D---- C:\Windows\Temp
2010-09-13 14:43:43 ----D---- C:\Program Files (x86)\Common Files
2010-09-13 14:43:26 ----D---- C:\Windows\SysWOW64
2010-09-13 14:41:57 ----SHD---- C:\System Volume Information
2010-09-13 11:24:30 ----D---- C:\Windows\system32\config
2010-09-13 11:22:40 ----D---- C:\Windows\Microsoft.NET
2010-09-13 11:06:32 ----RSD---- C:\Windows\assembly
2010-09-13 09:00:51 ----D---- C:\Windows
2010-09-13 08:59:49 ----HD---- C:\ProgramData
2010-09-13 08:58:32 ----RD---- C:\Program Files (x86)
2010-09-12 12:10:41 ----D---- C:\Windows\system32\drivers
2010-09-12 10:29:58 ----D---- C:\Windows\system32\LogFiles
2010-09-12 10:29:36 ----D---- C:\Windows\System32
2010-09-12 10:03:10 ----D---- C:\Windows\Logs
2010-09-12 10:02:54 ----D---- C:\Windows\winsxs
2010-09-12 08:10:42 ----SD---- C:\ProgramData\Microsoft
2010-09-11 23:26:54 ----D---- C:\Windows\system32\Tasks
2010-09-11 21:19:18 ----D---- C:\Windows\system32\catroot2
2010-09-11 21:09:27 ----D---- C:\Windows\inf
2010-09-11 21:09:26 ----D---- C:\Windows\system32\catroot
2010-09-11 21:09:08 ----D---- C:\Windows\system32\DriverStore
2010-09-11 20:15:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-11 19:55:29 ----D---- C:\Windows\system32\wdi
2010-09-11 19:21:42 ----D---- C:\Windows\debug
2010-09-11 19:06:16 ----D---- C:\Windows\Tasks
2010-09-11 13:46:57 ----RSD---- C:\Windows\Fonts
2010-09-11 13:41:44 ----A---- C:\Windows\win.ini
2010-09-11 13:37:31 ----D---- C:\Program Files (x86)\MSBuild
2010-09-11 13:37:15 ----D---- C:\Windows\ShellNew
2010-09-11 13:35:10 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-09-11 13:09:42 ----D---- C:\Program Files\Common Files
2010-09-11 13:01:40 ----D---- C:\Windows\SYSWOW64\en-US
2010-09-11 13:01:40 ----D---- C:\Windows\system32\en-US
2010-09-11 12:30:52 ----D---- C:\Program Files\Windows Media Player
2010-09-11 12:30:52 ----D---- C:\Program Files (x86)\Windows Media Player
2010-09-11 12:30:49 ----D---- C:\Program Files\Windows Mail
2010-09-11 12:30:48 ----D---- C:\Program Files (x86)\Windows Mail
2010-09-11 12:30:41 ----D---- C:\Program Files\Internet Explorer
2010-09-11 12:30:41 ----D---- C:\Program Files (x86)\Internet Explorer
2010-09-11 12:30:40 ----D---- C:\Windows\SYSWOW64\migration
2010-09-11 12:30:40 ----D---- C:\Windows\system32\migration
2010-09-11 12:30:38 ----D---- C:\Windows\AppPatch
2010-09-11 12:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-09-11 12:30:35 ----D---- C:\Windows\system32\cs-CZ
2010-09-11 12:30:33 ----D---- C:\Windows\ehome
2010-09-11 11:44:55 ----D---- C:\Windows\Setup
2010-09-11 11:38:45 ----D---- C:\Windows\system32\restore
2010-09-11 11:24:18 ----SHD---- C:\$Recycle.Bin
2010-09-11 11:20:45 ----RD---- C:\Users
2010-09-11 11:18:31 ----SHD---- C:\Recovery
2010-09-11 11:18:26 ----D---- C:\Program Files\Windows NT
2010-09-11 11:02:58 ----D---- C:\Windows\system32\sysprep
2010-09-11 11:02:44 ----D---- C:\Windows\system32\CodeIntegrity
2010-09-11 10:57:04 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2010-09-12 198944]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-12 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-03-25 173984]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-10-02 6182400]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 40832]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 ao468an6;ao468an6; C:\Windows\system32\drivers\ao468an6.sys []
S3 ATICDSDr;ATICDSDr; \??\C:\Users\Ivan\AppData\Local\Temp\ATICDSDr.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-10-02 202752]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17424]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [2007-03-15 2233400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [2009-08-24 544768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-09-11 1255736]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu, pomalý start PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu, pomalý start PC
Zdravim a pekne odpoledne preji 
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5 az 10 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, pomalý start PC
Ahoj, asi se to zastavilo potom co mi vyjelo okenko OTL errr desktop
Re: Prosím o kontrolu logu, pomalý start PC
mělo být error
Re: Prosím o kontrolu logu, pomalý start PC
Spustte OTL bez doplnkoveho skriptu...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, pomalý start PC
Pripadne pokud nepujde tak aplikovat OTL v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, pomalý start PC
Zpráva obsahuje moc znaků- nejde odeslat, jak to má udělat?
Re: Prosím o kontrolu logu, pomalý start PC
Něják rozdělit?
Re: Prosím o kontrolu logu, pomalý start PC
Jeden prispevek log otl.txt, druhy prispevek extras.txt - priapdne rozdelit na dalsi prispevky pokud to bude stale velke...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, pomalý start PC
OTL logfile created on: 13.9.2010 15:46:57 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Ivan\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 68,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 73,24 Gb Total Space | 47,52 Gb Free Space | 64,88% Space Free | Partition Type: NTFS
Drive D: | 392,42 Gb Total Space | 342,73 Gb Free Space | 87,34% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: IVAN-PC
Current User Name: Ivan
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
PRC - [2010.09.07 02:10:44 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2010.06.17 07:55:00 | 003,680,568 | ---- | M] (Ghisler Software GmbH) -- C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
========== Modules (SafeList) ==========
MOD - [2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
MOD - [2010.03.08 23:33:56 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vbscript.dll
MOD - [2009.07.14 03:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009.07.14 03:16:19 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wmiutils.dll
MOD - [2009.07.14 03:16:18 | 001,011,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009.07.14 03:16:17 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbemcomn.dll
MOD - [2009.07.14 03:16:17 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemdisp.dll
MOD - [2009.07.14 03:16:17 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemsvc.dll
MOD - [2009.07.14 03:16:17 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemprox.dll
MOD - [2009.07.14 03:16:15 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2009.07.14 03:16:13 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2009.07.14 03:16:11 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdsapi.dll
MOD - [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\fastprox.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.03.25 23:48:42 | 000,017,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009.10.02 05:38:18 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009.07.14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010.03.18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.08.24 22:16:12 | 000,544,768 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe -- (DfSdkS)
SRV - [2008.10.25 11:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2007.03.15 10:06:12 | 002,233,400 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe -- (AcronisOSSReinstallSvc)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2010.09.12 12:10:40 | 000,198,944 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010.09.12 09:46:49 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.05.24 20:07:58 | 000,253,728 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2009.10.02 06:11:14 | 006,182,400 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009.07.14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009.07.14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009.07.14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009.07.14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "seznam.cz"
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.18
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {EF522540-89F5-46b9-B6FE-1829E2B572C6}:4.0
FF - prefs.js..extensions.enabledItems: {B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
FF - prefs.js..network.proxy.type: 2
FF - user.js..browser.search.openintab: false
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.09.11 12:10:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.09.13 08:58:50 | 000,000,000 | ---D | M]
[2010.09.11 12:10:51 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Extensions
[2010.09.11 12:10:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ivan\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.09.13 09:00:30 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions
[2010.09.11 18:43:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.09.11 18:43:49 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\staged-xpis
[2010.09.11 21:00:37 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\toolbar@ask.com
[2010.09.13 14:43:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.09.11 12:10:29 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.09.11 18:43:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.13 08:58:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.09.13 14:43:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.08.25 04:33:19 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
[2010.08.25 04:33:19 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
[2007.04.10 17:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
[2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.08.25 04:33:19 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
[2010.08.13 07:03:40 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
[2010.08.25 02:24:47 | 000,002,371 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
[2010.08.25 02:24:47 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.08.25 02:24:47 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.08.25 02:24:47 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.08.25 02:24:47 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.08.25 02:24:47 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (%windows%\system32\userinit.exe) - File not found
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Ivan\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 68,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 73,24 Gb Total Space | 47,52 Gb Free Space | 64,88% Space Free | Partition Type: NTFS
Drive D: | 392,42 Gb Total Space | 342,73 Gb Free Space | 87,34% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: IVAN-PC
Current User Name: Ivan
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
PRC - [2010.09.07 02:10:44 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2010.06.17 07:55:00 | 003,680,568 | ---- | M] (Ghisler Software GmbH) -- C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
========== Modules (SafeList) ==========
MOD - [2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
MOD - [2010.03.08 23:33:56 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vbscript.dll
MOD - [2009.07.14 03:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009.07.14 03:16:19 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wmiutils.dll
MOD - [2009.07.14 03:16:18 | 001,011,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009.07.14 03:16:17 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbemcomn.dll
MOD - [2009.07.14 03:16:17 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemdisp.dll
MOD - [2009.07.14 03:16:17 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemsvc.dll
MOD - [2009.07.14 03:16:17 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemprox.dll
MOD - [2009.07.14 03:16:15 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2009.07.14 03:16:13 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2009.07.14 03:16:11 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdsapi.dll
MOD - [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\fastprox.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.03.25 23:48:42 | 000,017,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009.10.02 05:38:18 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009.07.14 03:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010.03.18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.08.24 22:16:12 | 000,544,768 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe -- (DfSdkS)
SRV - [2008.10.25 11:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2007.03.15 10:06:12 | 002,233,400 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe -- (AcronisOSSReinstallSvc)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2010.09.12 12:10:40 | 000,198,944 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010.09.12 09:46:49 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.05.24 20:07:58 | 000,253,728 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2009.10.02 06:11:14 | 006,182,400 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009.07.14 03:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009.07.14 03:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009.07.14 01:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009.07.14 01:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "seznam.cz"
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.18
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {EF522540-89F5-46b9-B6FE-1829E2B572C6}:4.0
FF - prefs.js..extensions.enabledItems: {B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
FF - prefs.js..network.proxy.type: 2
FF - user.js..browser.search.openintab: false
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.09.11 12:10:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.09.13 08:58:50 | 000,000,000 | ---D | M]
[2010.09.11 12:10:51 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Extensions
[2010.09.11 12:10:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ivan\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.09.13 09:00:30 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions
[2010.09.11 18:43:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.09.11 18:43:49 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\staged-xpis
[2010.09.11 21:00:37 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\toolbar@ask.com
[2010.09.13 14:43:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.09.11 12:10:29 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.09.11 18:43:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.13 08:58:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.09.13 14:43:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.08.25 04:33:19 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
[2010.08.25 04:33:19 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
[2007.04.10 17:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
[2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.08.25 04:33:19 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
[2010.08.13 07:03:40 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
[2010.08.25 02:24:47 | 000,002,371 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
[2010.08.25 02:24:47 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.08.25 02:24:47 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.08.25 02:24:47 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.08.25 02:24:47 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.08.25 02:24:47 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (%windows%\system32\userinit.exe) - File not found
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
Re: Prosím o kontrolu logu, pomalý start PC
========== Files/Folders - Created Within 7 Days ==========
[2010.09.13 15:25:29 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
[2010.09.13 14:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.09.13 14:46:59 | 000,000,000 | ---D | C] -- C:\rsit
[2010.09.13 14:43:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.09.13 14:43:26 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.09.13 14:43:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.09.13 14:43:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.09.13 14:40:26 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2010.09.13 09:00:51 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010.09.13 08:59:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.13 08:58:50 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.09.13 08:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.09.12 12:10:40 | 000,198,944 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2010.09.12 12:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Acronis
[2010.09.12 12:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acronis
[2010.09.12 10:29:36 | 000,034,304 | ---- | C] (mst software GmbH, Germany) -- C:\Windows\SysNative\DfSdkBt.exe
[2010.09.12 10:29:36 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\Windows\SysWow64\DfSdkBt32.exe
[2010.09.12 10:29:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2010.09.12 10:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2010.09.12 10:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero
[2010.09.12 10:21:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2010.09.12 10:06:29 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.09.12 10:05:57 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.09.12 10:05:26 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010.09.12 10:04:52 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010.09.12 10:04:03 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010.09.12 10:03:35 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010.09.12 09:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2010.09.12 09:45:30 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\DAEMON Tools Lite
[2010.09.12 09:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010.09.12 09:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Doctor
[2010.09.12 08:43:23 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\URSoft
[2010.09.12 08:43:22 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010.09.12 08:43:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Your Uninstaller 2010
[2010.09.12 08:10:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2010.09.11 21:09:28 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010.09.11 21:08:21 | 002,601,816 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2010.09.11 21:08:21 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2010.09.11 21:08:21 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2010.09.11 21:08:21 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2010.09.11 21:08:21 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2010.09.11 21:08:13 | 002,618,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2010.09.11 21:08:13 | 002,032,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2010.09.11 21:08:13 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2010.09.11 21:08:13 | 000,476,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2010.09.11 21:08:13 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2010.09.11 21:08:13 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2010.09.11 21:08:13 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2010.09.11 21:08:13 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2010.09.11 21:08:13 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2010.09.11 21:08:13 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2010.09.11 21:08:12 | 001,213,544 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2010.09.11 21:08:12 | 000,607,832 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll
[2010.09.11 21:08:12 | 000,531,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2010.09.11 21:08:12 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010.09.11 21:08:12 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010.09.11 21:08:12 | 000,080,984 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2010.09.11 21:08:12 | 000,076,904 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2010.09.11 21:08:12 | 000,064,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBppld64.dll
[2010.09.11 21:08:12 | 000,060,504 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBPPCn64.dll
[2010.09.11 21:08:11 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2010.09.11 21:08:11 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010.09.11 21:08:09 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010.09.11 21:08:07 | 000,200,800 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2010.09.11 21:08:07 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2010.09.11 21:08:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010.09.11 21:08:00 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.09.11 21:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010.09.11 21:06:43 | 002,602,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkHDM64.dll
[2010.09.11 21:06:42 | 000,369,864 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64H.dll
[2010.09.11 21:06:42 | 000,253,728 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys
[2010.09.11 21:06:42 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64H.dll
[2010.09.11 21:06:42 | 000,095,432 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64H.dll
[2010.09.11 21:06:42 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64H.dll
[2010.09.11 21:06:41 | 001,964,064 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHDMEx64.dll
[2010.09.11 21:06:41 | 000,307,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DHT64.dll
[2010.09.11 21:06:41 | 000,307,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DAA64.dll
[2010.09.11 21:06:41 | 000,069,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHCoInst64.dll
[2010.09.11 21:06:37 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2010.09.11 20:29:41 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\DriverGenius
[2010.09.11 20:27:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2010.09.11 19:39:37 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\The KMPlayer
[2010.09.11 19:37:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The KMPlayer
[2010.09.11 19:20:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010.09.11 19:15:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Antimalware
[2010.09.11 19:15:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010.09.11 19:01:42 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\IObit
[2010.09.11 19:01:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2010.09.11 18:56:19 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\ZPS12
[2010.09.11 18:55:20 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Zoner
[2010.09.11 18:55:20 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Zoner
[2010.09.11 18:50:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zoner
[2010.09.11 18:42:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MozBackup
[2010.09.11 18:32:39 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Adobe
[2010.09.11 18:30:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.09.11 18:30:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.09.11 18:30:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.09.11 18:27:17 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Macromedia
[2010.09.11 18:27:17 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Adobe
[2010.09.11 18:12:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010.09.11 18:11:39 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\WinRAR
[2010.09.11 18:11:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010.09.11 18:10:28 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\GHISLER
[2010.09.11 18:08:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\totalcmd
[2010.09.11 18:08:37 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\GHISLER
[2010.09.11 18:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010.09.11 18:01:11 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\uTorrent
[2010.09.11 17:54:38 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\Total Commander 7.55 Final
[2010.09.11 13:37:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010.09.11 13:37:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010.09.11 13:37:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010.09.11 13:37:00 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.09.11 13:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.09.11 13:33:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010.09.11 13:32:18 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Microsoft Help
[2010.09.11 13:32:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010.09.11 13:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010.09.11 13:09:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2010.09.11 13:09:27 | 000,121,872 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\drivers\AtiHdmi.sys
[2010.09.11 13:09:13 | 000,446,464 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2010.09.11 13:01:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\ATI
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\ATI
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010.09.11 12:46:07 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\ElevatedDiagnostics
[2010.09.11 12:30:33 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010.09.11 12:30:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010.09.11 12:14:45 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010.09.11 12:14:45 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.09.11 12:14:45 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010.09.11 12:14:45 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.09.11 12:14:45 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.09.11 12:14:45 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.09.11 12:14:45 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.09.11 12:14:45 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010.09.11 12:14:17 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2010.09.11 12:10:36 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Mozilla
[2010.09.11 12:10:36 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Mozilla
[2010.09.11 12:10:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.09.11 12:08:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Opera
[2010.09.11 12:08:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Opera
[2010.09.11 12:08:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2010.09.11 12:03:36 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010.09.11 12:03:28 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010.09.11 12:03:28 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010.09.11 12:03:20 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010.09.11 12:03:19 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010.09.11 12:03:19 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2010.09.11 12:03:19 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2010.09.11 12:03:18 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010.09.11 12:03:18 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010.09.11 12:02:59 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.09.11 12:02:59 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.09.11 12:02:59 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.09.11 12:02:59 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.09.11 12:02:59 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.09.11 12:02:59 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.09.11 12:02:59 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.09.11 12:02:59 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.09.11 12:02:59 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.09.11 12:02:59 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.09.11 12:02:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.09.11 12:02:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.09.11 12:02:56 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.09.11 12:02:55 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.09.11 12:02:53 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.09.11 12:02:51 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.09.11 12:02:15 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.09.11 12:02:15 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.09.11 12:02:02 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.09.11 12:02:01 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010.09.11 12:01:54 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010.09.11 12:01:35 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.09.11 12:01:35 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.09.11 12:01:34 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.09.11 12:01:34 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.09.11 12:01:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.09.11 12:01:34 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.09.11 12:01:22 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010.09.11 12:01:14 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.09.11 12:01:14 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010.09.11 12:01:14 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010.09.11 12:01:06 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2010.09.11 12:01:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2010.09.11 12:01:06 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2010.09.11 12:01:06 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2010.09.11 12:01:06 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2010.09.11 12:01:06 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2010.09.11 12:01:00 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.09.11 12:01:00 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.09.11 12:00:52 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.09.11 12:00:44 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010.09.11 12:00:38 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010.09.11 12:00:38 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010.09.11 12:00:38 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2010.09.11 12:00:38 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010.09.11 12:00:38 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2010.09.11 12:00:38 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010.09.11 12:00:38 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010.09.11 12:00:38 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010.09.11 12:00:38 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010.09.11 12:00:29 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.09.11 12:00:29 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.09.11 12:00:28 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.09.11 12:00:28 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.09.11 12:00:03 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010.09.11 12:00:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010.09.11 11:59:56 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010.09.11 11:59:41 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2010.09.11 11:59:40 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.09.11 11:59:40 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.09.11 11:59:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010.09.11 11:59:40 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010.09.11 11:59:40 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010.09.11 11:59:40 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.09.11 11:51:37 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.09.11 11:44:29 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.09.11 11:43:30 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010.09.11 11:43:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010.09.11 11:43:07 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010.09.11 11:43:07 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010.09.11 11:41:29 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010.09.11 11:41:29 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010.09.11 11:28:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2010.09.11 11:28:58 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010.09.11 11:28:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010.09.11 11:24:39 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Searches
[2010.09.11 11:24:26 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Identities
[2010.09.11 11:24:20 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Contacts
[2010.09.11 11:24:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\VirtualStore
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\Temporary Internet Files
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Šablony
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Soubory cookie
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\SendTo
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Poslední
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Okolní tiskárny
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Okolní síť
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Obrázky
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Nabídka Start
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Local Settings
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Hudba
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\History
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Filmy
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Dokumenty
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Data aplikací
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\Data aplikací
[2010.09.11 11:20:48 | 000,000,000 | --SD | C] -- C:\Users\Ivan\AppData\Roaming\Microsoft
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Videos
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Saved Games
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Pictures
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Music
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Links
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Favorites
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Downloads
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Dokumenty
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Desktop
[2010.09.11 11:20:48 | 000,000,000 | -H-D | C] -- C:\Users\Ivan\AppData
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Temp
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Microsoft
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Media Center Programs
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2010.09.11 11:18:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.09.11 11:00:26 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.09.11 10:55:15 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.09.10 22:12:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
========== Files - Modified Within 7 Days ==========
[2010.09.13 15:47:13 | 002,097,152 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT
[2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
[2010.09.13 14:42:51 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.13 14:42:51 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.13 14:35:43 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.09.13 14:34:44 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.13 14:34:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.13 14:33:54 | 3220,873,216 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.13 11:24:09 | 001,759,718 | -H-- | M] () -- C:\Users\Ivan\AppData\Local\IconCache.db
[2010.09.12 22:43:09 | 000,003,544 | ---- | M] () -- C:\bootsqm.dat
[2010.09.12 12:10:40 | 000,198,944 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2010.09.12 12:10:39 | 000,001,412 | ---- | M] () -- C:\Users\Ivan\Desktop\Acronis Disk Director Suite.lnk
[2010.09.12 09:46:49 | 000,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010.09.11 20:15:10 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.09.11 20:15:10 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.09.11 20:15:10 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.09.11 20:15:10 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.09.11 20:15:10 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.09.11 20:10:01 | 000,000,410 | ---- | M] () -- C:\Windows\tasks\AWC Update.job
[2010.09.11 19:38:09 | 000,001,035 | ---- | M] () -- C:\Users\Ivan\Desktop\KMPlayer.lnk
[2010.09.11 19:23:02 | 000,006,112 | ---- | M] () -- C:\Users\Ivan\Documents\cc_20100911_192256.reg
[2010.09.11 19:20:41 | 000,001,007 | ---- | M] () -- C:\Users\Ivan\Desktop\CCleaner.lnk
[2010.09.11 19:18:17 | 000,000,000 | -H-- | M] () -- C:\Users\Ivan\Documents\Default.rdp
[2010.09.11 18:55:13 | 000,002,057 | ---- | M] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.09.11 18:46:50 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.09.11 18:01:52 | 000,000,943 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2010.09.11 17:57:53 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.09.11 17:54:37 | 000,001,650 | ---- | M] () -- C:\Users\Ivan\Documents\Total Commander 7.55 Final.torrent
[2010.09.11 17:48:37 | 000,108,840 | ---- | M] () -- C:\Users\Ivan\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.09.11 17:47:56 | 000,002,741 | ---- | M] () -- C:\Users\Ivan\Desktop\Microsoft Office Word 2007.lnk
[2010.09.11 17:47:47 | 000,002,659 | ---- | M] () -- C:\Users\Ivan\Desktop\Microsoft Office Excel 2007.lnk
[2010.09.11 17:44:43 | 000,414,200 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.09.11 13:41:44 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010.09.11 13:12:49 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.09.11 11:21:08 | 000,524,288 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.11 11:21:08 | 000,524,288 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.11 11:21:08 | 000,065,536 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.11 11:21:00 | 000,000,020 | -HS- | M] () -- C:\Users\Ivan\ntuser.ini
[2010.09.11 11:04:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010.09.11 11:04:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysNative\license.rtf
========== Files Created - No Company Name ==========
[2010.09.12 22:43:09 | 000,003,544 | ---- | C] () -- C:\bootsqm.dat
[2010.09.12 12:10:39 | 000,001,412 | ---- | C] () -- C:\Users\Ivan\Desktop\Acronis Disk Director Suite.lnk
[2010.09.12 09:46:49 | 000,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010.09.11 20:43:40 | 000,375,743 | ---- | C] () -- C:\Users\Ivan\Desktop\Sešit1.xlsx
[2010.09.11 20:43:37 | 000,374,784 | ---- | C] () -- C:\Users\Ivan\Desktop\Andrea Ramesova - CV Cz.doc
[2010.09.11 19:38:09 | 000,001,035 | ---- | C] () -- C:\Users\Ivan\Desktop\KMPlayer.lnk
[2010.09.11 19:23:00 | 000,006,112 | ---- | C] () -- C:\Users\Ivan\Documents\cc_20100911_192256.reg
[2010.09.11 19:20:41 | 000,001,007 | ---- | C] () -- C:\Users\Ivan\Desktop\CCleaner.lnk
[2010.09.11 19:18:17 | 000,000,000 | -H-- | C] () -- C:\Users\Ivan\Documents\Default.rdp
[2010.09.11 19:03:17 | 000,000,410 | ---- | C] () -- C:\Windows\tasks\AWC Update.job
[2010.09.11 19:03:16 | 000,000,398 | ---- | C] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.09.11 18:55:13 | 000,002,057 | ---- | C] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.09.11 18:46:50 | 000,002,014 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2010.09.11 18:01:52 | 000,000,943 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2010.09.11 17:57:53 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.09.11 17:54:37 | 000,001,650 | ---- | C] () -- C:\Users\Ivan\Documents\Total Commander 7.55 Final.torrent
[2010.09.11 17:47:56 | 000,002,741 | ---- | C] () -- C:\Users\Ivan\Desktop\Microsoft Office Word 2007.lnk
[2010.09.11 17:47:47 | 000,002,659 | ---- | C] () -- C:\Users\Ivan\Desktop\Microsoft Office Excel 2007.lnk
[2010.09.11 13:12:49 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.09.11 13:09:11 | 000,018,618 | ---- | C] () -- C:\Windows\atiogl.xml
[2010.09.11 11:21:00 | 000,000,020 | -HS- | C] () -- C:\Users\Ivan\ntuser.ini
[2010.09.11 11:20:59 | 000,524,288 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.11 11:20:49 | 000,524,288 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.11 11:20:49 | 000,262,144 | -HS- | C] () -- C:\Users\Ivan\ntuser.dat.LOG1
[2010.09.11 11:20:49 | 000,065,536 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.11 11:20:49 | 000,000,000 | -HS- | C] () -- C:\Users\Ivan\ntuser.dat.LOG2
[2010.09.11 11:20:48 | 002,097,152 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT
[2010.09.10 23:47:33 | 001,630,004 | ---- | C] () -- C:\Windows6.1-KB977419-x64.msu
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
========== LOP Check ==========
[2010.09.12 09:53:15 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\DAEMON Tools Lite
[2010.09.11 18:08:37 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\GHISLER
[2010.09.11 19:01:42 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\IObit
[2010.09.11 12:08:16 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Opera
[2010.09.12 08:43:23 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\URSoft
[2010.09.12 11:58:27 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\uTorrent
[2010.09.11 18:56:16 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Zoner
[2010.09.13 14:35:43 | 000,000,398 | ---- | M] () -- C:\Windows\Tasks\AWC AutoSweep.job
[2010.09.11 20:10:01 | 000,000,410 | ---- | M] () -- C:\Windows\Tasks\AWC Update.job
[2009.07.14 07:08:49 | 000,005,892 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:1CE11B51
< End of report >
[2010.09.13 15:25:29 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
[2010.09.13 14:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.09.13 14:46:59 | 000,000,000 | ---D | C] -- C:\rsit
[2010.09.13 14:43:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.09.13 14:43:26 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010.09.13 14:43:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010.09.13 14:43:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010.09.13 14:40:26 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2010.09.13 09:00:51 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010.09.13 08:59:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.13 08:58:50 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010.09.13 08:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.09.12 12:10:40 | 000,198,944 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2010.09.12 12:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Acronis
[2010.09.12 12:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acronis
[2010.09.12 10:29:36 | 000,034,304 | ---- | C] (mst software GmbH, Germany) -- C:\Windows\SysNative\DfSdkBt.exe
[2010.09.12 10:29:36 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\Windows\SysWow64\DfSdkBt32.exe
[2010.09.12 10:29:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2010.09.12 10:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2010.09.12 10:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero
[2010.09.12 10:21:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2010.09.12 10:06:29 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010.09.12 10:05:57 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010.09.12 10:05:26 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010.09.12 10:04:52 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010.09.12 10:04:03 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010.09.12 10:03:35 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010.09.12 09:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2010.09.12 09:45:30 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\DAEMON Tools Lite
[2010.09.12 09:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010.09.12 09:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Doctor
[2010.09.12 08:43:23 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\URSoft
[2010.09.12 08:43:22 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010.09.12 08:43:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Your Uninstaller 2010
[2010.09.12 08:10:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2010.09.11 21:09:28 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010.09.11 21:08:21 | 002,601,816 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2010.09.11 21:08:21 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2010.09.11 21:08:21 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2010.09.11 21:08:21 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2010.09.11 21:08:21 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2010.09.11 21:08:13 | 002,618,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2010.09.11 21:08:13 | 002,032,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2010.09.11 21:08:13 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2010.09.11 21:08:13 | 000,476,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2010.09.11 21:08:13 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2010.09.11 21:08:13 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2010.09.11 21:08:13 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2010.09.11 21:08:13 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2010.09.11 21:08:13 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2010.09.11 21:08:13 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2010.09.11 21:08:12 | 001,213,544 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2010.09.11 21:08:12 | 000,607,832 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll
[2010.09.11 21:08:12 | 000,531,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2010.09.11 21:08:12 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010.09.11 21:08:12 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010.09.11 21:08:12 | 000,080,984 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2010.09.11 21:08:12 | 000,076,904 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2010.09.11 21:08:12 | 000,064,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBppld64.dll
[2010.09.11 21:08:12 | 000,060,504 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBPPCn64.dll
[2010.09.11 21:08:11 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2010.09.11 21:08:11 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010.09.11 21:08:09 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010.09.11 21:08:07 | 000,200,800 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2010.09.11 21:08:07 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2010.09.11 21:08:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010.09.11 21:08:00 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010.09.11 21:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010.09.11 21:06:43 | 002,602,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkHDM64.dll
[2010.09.11 21:06:42 | 000,369,864 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64H.dll
[2010.09.11 21:06:42 | 000,253,728 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys
[2010.09.11 21:06:42 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64H.dll
[2010.09.11 21:06:42 | 000,095,432 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64H.dll
[2010.09.11 21:06:42 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64H.dll
[2010.09.11 21:06:41 | 001,964,064 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHDMEx64.dll
[2010.09.11 21:06:41 | 000,307,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DHT64.dll
[2010.09.11 21:06:41 | 000,307,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RH3DAA64.dll
[2010.09.11 21:06:41 | 000,069,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RHCoInst64.dll
[2010.09.11 21:06:37 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2010.09.11 20:29:41 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\DriverGenius
[2010.09.11 20:27:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2010.09.11 19:39:37 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\The KMPlayer
[2010.09.11 19:37:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The KMPlayer
[2010.09.11 19:20:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010.09.11 19:15:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Antimalware
[2010.09.11 19:15:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010.09.11 19:01:42 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\IObit
[2010.09.11 19:01:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2010.09.11 18:56:19 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\ZPS12
[2010.09.11 18:55:20 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Zoner
[2010.09.11 18:55:20 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Zoner
[2010.09.11 18:50:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zoner
[2010.09.11 18:42:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MozBackup
[2010.09.11 18:32:39 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Adobe
[2010.09.11 18:30:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010.09.11 18:30:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010.09.11 18:30:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010.09.11 18:27:17 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Macromedia
[2010.09.11 18:27:17 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Adobe
[2010.09.11 18:12:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010.09.11 18:11:39 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\WinRAR
[2010.09.11 18:11:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010.09.11 18:10:28 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\GHISLER
[2010.09.11 18:08:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\totalcmd
[2010.09.11 18:08:37 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\GHISLER
[2010.09.11 18:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010.09.11 18:01:11 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\uTorrent
[2010.09.11 17:54:38 | 000,000,000 | ---D | C] -- C:\Users\Ivan\Documents\Total Commander 7.55 Final
[2010.09.11 13:37:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010.09.11 13:37:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010.09.11 13:37:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010.09.11 13:37:00 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.09.11 13:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.09.11 13:33:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010.09.11 13:32:18 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Microsoft Help
[2010.09.11 13:32:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010.09.11 13:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010.09.11 13:09:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2010.09.11 13:09:27 | 000,121,872 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\drivers\AtiHdmi.sys
[2010.09.11 13:09:13 | 000,446,464 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2010.09.11 13:01:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\ATI
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\ATI
[2010.09.11 13:00:48 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010.09.11 12:46:07 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\ElevatedDiagnostics
[2010.09.11 12:30:33 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010.09.11 12:30:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010.09.11 12:14:45 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010.09.11 12:14:45 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.09.11 12:14:45 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010.09.11 12:14:45 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.09.11 12:14:45 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.09.11 12:14:45 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.09.11 12:14:45 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.09.11 12:14:45 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010.09.11 12:14:17 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2010.09.11 12:10:36 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Mozilla
[2010.09.11 12:10:36 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Mozilla
[2010.09.11 12:10:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.09.11 12:08:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Opera
[2010.09.11 12:08:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Opera
[2010.09.11 12:08:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2010.09.11 12:03:36 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010.09.11 12:03:28 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010.09.11 12:03:28 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010.09.11 12:03:20 | 014,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010.09.11 12:03:19 | 011,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010.09.11 12:03:19 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2010.09.11 12:03:19 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2010.09.11 12:03:18 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010.09.11 12:03:18 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010.09.11 12:02:59 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2010.09.11 12:02:59 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2010.09.11 12:02:59 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2010.09.11 12:02:59 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2010.09.11 12:02:59 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2010.09.11 12:02:59 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2010.09.11 12:02:59 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2010.09.11 12:02:59 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2010.09.11 12:02:59 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2010.09.11 12:02:59 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2010.09.11 12:02:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2010.09.11 12:02:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2010.09.11 12:02:56 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2010.09.11 12:02:55 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2010.09.11 12:02:53 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2010.09.11 12:02:51 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2010.09.11 12:02:15 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010.09.11 12:02:15 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010.09.11 12:02:02 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.09.11 12:02:01 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010.09.11 12:01:54 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010.09.11 12:01:35 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.09.11 12:01:35 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.09.11 12:01:34 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.09.11 12:01:34 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.09.11 12:01:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.09.11 12:01:34 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.09.11 12:01:22 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010.09.11 12:01:14 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.09.11 12:01:14 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010.09.11 12:01:14 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010.09.11 12:01:06 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2010.09.11 12:01:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2010.09.11 12:01:06 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2010.09.11 12:01:06 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2010.09.11 12:01:06 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2010.09.11 12:01:06 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2010.09.11 12:01:00 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.09.11 12:01:00 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.09.11 12:00:52 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.09.11 12:00:44 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010.09.11 12:00:38 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010.09.11 12:00:38 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010.09.11 12:00:38 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2010.09.11 12:00:38 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010.09.11 12:00:38 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2010.09.11 12:00:38 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010.09.11 12:00:38 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010.09.11 12:00:38 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010.09.11 12:00:38 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010.09.11 12:00:29 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2010.09.11 12:00:29 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2010.09.11 12:00:28 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2010.09.11 12:00:28 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2010.09.11 12:00:03 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2010.09.11 12:00:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2010.09.11 11:59:56 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010.09.11 11:59:41 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2010.09.11 11:59:40 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010.09.11 11:59:40 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.09.11 11:59:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010.09.11 11:59:40 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010.09.11 11:59:40 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010.09.11 11:59:40 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.09.11 11:51:37 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010.09.11 11:44:29 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.09.11 11:43:30 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010.09.11 11:43:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010.09.11 11:43:07 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010.09.11 11:43:07 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010.09.11 11:41:29 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010.09.11 11:41:29 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010.09.11 11:28:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2010.09.11 11:28:58 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010.09.11 11:28:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010.09.11 11:24:39 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Searches
[2010.09.11 11:24:26 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Identities
[2010.09.11 11:24:20 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Contacts
[2010.09.11 11:24:16 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\VirtualStore
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\Temporary Internet Files
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Šablony
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Soubory cookie
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\SendTo
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Poslední
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Okolní tiskárny
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Okolní síť
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Obrázky
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Nabídka Start
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Local Settings
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Hudba
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\History
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Documents\Filmy
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Dokumenty
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\Data aplikací
[2010.09.11 11:20:59 | 000,000,000 | -HSD | C] -- C:\Users\Ivan\AppData\Local\Data aplikací
[2010.09.11 11:20:48 | 000,000,000 | --SD | C] -- C:\Users\Ivan\AppData\Roaming\Microsoft
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Videos
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Saved Games
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Pictures
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Music
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Links
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Favorites
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Downloads
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Dokumenty
[2010.09.11 11:20:48 | 000,000,000 | R--D | C] -- C:\Users\Ivan\Desktop
[2010.09.11 11:20:48 | 000,000,000 | -H-D | C] -- C:\Users\Ivan\AppData
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Temp
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Local\Microsoft
[2010.09.11 11:20:48 | 000,000,000 | ---D | C] -- C:\Users\Ivan\AppData\Roaming\Media Center Programs
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.09.11 11:18:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2010.09.11 11:18:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.09.11 11:00:26 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.09.11 10:55:15 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010.09.10 22:12:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
========== Files - Modified Within 7 Days ==========
[2010.09.13 15:47:13 | 002,097,152 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT
[2010.09.13 15:25:30 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Ivan\Desktop\OTL.exe
[2010.09.13 14:42:51 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.13 14:42:51 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.13 14:35:43 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.09.13 14:34:44 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.13 14:34:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.13 14:33:54 | 3220,873,216 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.13 11:24:09 | 001,759,718 | -H-- | M] () -- C:\Users\Ivan\AppData\Local\IconCache.db
[2010.09.12 22:43:09 | 000,003,544 | ---- | M] () -- C:\bootsqm.dat
[2010.09.12 12:10:40 | 000,198,944 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2010.09.12 12:10:39 | 000,001,412 | ---- | M] () -- C:\Users\Ivan\Desktop\Acronis Disk Director Suite.lnk
[2010.09.12 09:46:49 | 000,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010.09.11 20:15:10 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.09.11 20:15:10 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.09.11 20:15:10 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.09.11 20:15:10 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.09.11 20:15:10 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.09.11 20:10:01 | 000,000,410 | ---- | M] () -- C:\Windows\tasks\AWC Update.job
[2010.09.11 19:38:09 | 000,001,035 | ---- | M] () -- C:\Users\Ivan\Desktop\KMPlayer.lnk
[2010.09.11 19:23:02 | 000,006,112 | ---- | M] () -- C:\Users\Ivan\Documents\cc_20100911_192256.reg
[2010.09.11 19:20:41 | 000,001,007 | ---- | M] () -- C:\Users\Ivan\Desktop\CCleaner.lnk
[2010.09.11 19:18:17 | 000,000,000 | -H-- | M] () -- C:\Users\Ivan\Documents\Default.rdp
[2010.09.11 18:55:13 | 000,002,057 | ---- | M] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.09.11 18:46:50 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.09.11 18:01:52 | 000,000,943 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2010.09.11 17:57:53 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.09.11 17:54:37 | 000,001,650 | ---- | M] () -- C:\Users\Ivan\Documents\Total Commander 7.55 Final.torrent
[2010.09.11 17:48:37 | 000,108,840 | ---- | M] () -- C:\Users\Ivan\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.09.11 17:47:56 | 000,002,741 | ---- | M] () -- C:\Users\Ivan\Desktop\Microsoft Office Word 2007.lnk
[2010.09.11 17:47:47 | 000,002,659 | ---- | M] () -- C:\Users\Ivan\Desktop\Microsoft Office Excel 2007.lnk
[2010.09.11 17:44:43 | 000,414,200 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.09.11 13:41:44 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010.09.11 13:12:49 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2010.09.11 11:21:08 | 000,524,288 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.11 11:21:08 | 000,524,288 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.11 11:21:08 | 000,065,536 | -HS- | M] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.11 11:21:00 | 000,000,020 | -HS- | M] () -- C:\Users\Ivan\ntuser.ini
[2010.09.11 11:04:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010.09.11 11:04:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysNative\license.rtf
========== Files Created - No Company Name ==========
[2010.09.12 22:43:09 | 000,003,544 | ---- | C] () -- C:\bootsqm.dat
[2010.09.12 12:10:39 | 000,001,412 | ---- | C] () -- C:\Users\Ivan\Desktop\Acronis Disk Director Suite.lnk
[2010.09.12 09:46:49 | 000,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010.09.11 20:43:40 | 000,375,743 | ---- | C] () -- C:\Users\Ivan\Desktop\Sešit1.xlsx
[2010.09.11 20:43:37 | 000,374,784 | ---- | C] () -- C:\Users\Ivan\Desktop\Andrea Ramesova - CV Cz.doc
[2010.09.11 19:38:09 | 000,001,035 | ---- | C] () -- C:\Users\Ivan\Desktop\KMPlayer.lnk
[2010.09.11 19:23:00 | 000,006,112 | ---- | C] () -- C:\Users\Ivan\Documents\cc_20100911_192256.reg
[2010.09.11 19:20:41 | 000,001,007 | ---- | C] () -- C:\Users\Ivan\Desktop\CCleaner.lnk
[2010.09.11 19:18:17 | 000,000,000 | -H-- | C] () -- C:\Users\Ivan\Documents\Default.rdp
[2010.09.11 19:03:17 | 000,000,410 | ---- | C] () -- C:\Windows\tasks\AWC Update.job
[2010.09.11 19:03:16 | 000,000,398 | ---- | C] () -- C:\Windows\tasks\AWC AutoSweep.job
[2010.09.11 18:55:13 | 000,002,057 | ---- | C] () -- C:\Users\Public\Desktop\Zoner Photo Studio 12.lnk
[2010.09.11 18:46:50 | 000,002,014 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010.09.11 18:08:37 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2010.09.11 18:01:52 | 000,000,943 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2010.09.11 17:57:53 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.09.11 17:54:37 | 000,001,650 | ---- | C] () -- C:\Users\Ivan\Documents\Total Commander 7.55 Final.torrent
[2010.09.11 17:47:56 | 000,002,741 | ---- | C] () -- C:\Users\Ivan\Desktop\Microsoft Office Word 2007.lnk
[2010.09.11 17:47:47 | 000,002,659 | ---- | C] () -- C:\Users\Ivan\Desktop\Microsoft Office Excel 2007.lnk
[2010.09.11 13:12:49 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.09.11 13:09:11 | 000,018,618 | ---- | C] () -- C:\Windows\atiogl.xml
[2010.09.11 11:21:00 | 000,000,020 | -HS- | C] () -- C:\Users\Ivan\ntuser.ini
[2010.09.11 11:20:59 | 000,524,288 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.09.11 11:20:49 | 000,524,288 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.09.11 11:20:49 | 000,262,144 | -HS- | C] () -- C:\Users\Ivan\ntuser.dat.LOG1
[2010.09.11 11:20:49 | 000,065,536 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.09.11 11:20:49 | 000,000,000 | -HS- | C] () -- C:\Users\Ivan\ntuser.dat.LOG2
[2010.09.11 11:20:48 | 002,097,152 | -HS- | C] () -- C:\Users\Ivan\NTUSER.DAT
[2010.09.10 23:47:33 | 001,630,004 | ---- | C] () -- C:\Windows6.1-KB977419-x64.msu
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
========== LOP Check ==========
[2010.09.12 09:53:15 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\DAEMON Tools Lite
[2010.09.11 18:08:37 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\GHISLER
[2010.09.11 19:01:42 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\IObit
[2010.09.11 12:08:16 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Opera
[2010.09.12 08:43:23 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\URSoft
[2010.09.12 11:58:27 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\uTorrent
[2010.09.11 18:56:16 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Zoner
[2010.09.13 14:35:43 | 000,000,398 | ---- | M] () -- C:\Windows\Tasks\AWC AutoSweep.job
[2010.09.11 20:10:01 | 000,000,410 | ---- | M] () -- C:\Windows\Tasks\AWC Update.job
[2009.07.14 07:08:49 | 000,005,892 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:1CE11B51
< End of report >
Re: Prosím o kontrolu logu, pomalý start PC
To je je vše
Re: Prosím o kontrolu logu, pomalý start PC
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation) IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation) IE - HKU\S-1-5-21-826784661-388447991-1028474658-1001\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation) FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Ask.com" [2010.09.11 21:00:37 | 000,000,000 | ---D | M] -- C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\toolbar@ask.com O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O7 - HKU\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0 O13 - gopher Prefix: missing O13 - gopher Prefix: missing O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O33 - MountPoints2\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\Shell - "" = AutoRun @Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:1CE11B51 :reg [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=- :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp /s :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [CLEARALLRESTOREPOINTS]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, pomalý start PC
All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Registry value HKEY_USERS\S-1-5-21-826784661-388447991-1028474658-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\toolbar@ask.com folder moved successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
Registry value HKEY_USERS\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\disableregistrytools deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88FED34C-F0CA-4636-A375-3CB6248B04CD}\ not found.
File {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\ not found.
ADS C:\ProgramData\TEMP:1CE11B51 deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Ivan
->Temp folder emptied: 49431055 bytes
->Temporary Internet Files folder emptied: 4995146 bytes
->Java cache emptied: 65377 bytes
->FireFox cache emptied: 54889097 bytes
->Opera cache emptied: 21691603 bytes
->Flash cache emptied: 783 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20934 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 576000 bytes
Total Files Cleaned = 126,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Ivan
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
OTL by OldTimer - Version 3.2.12.0 log created on 09132010_161654
Files\Folders moved on Reboot...
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
C:\Users\Ivan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Registry value HKEY_USERS\S-1-5-21-826784661-388447991-1028474658-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
C:\Users\Ivan\AppData\Roaming\Mozilla\Firefox\Profiles\bf6pjk88.default\extensions\toolbar@ask.com folder moved successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
Registry value HKEY_USERS\S-1-5-21-826784661-388447991-1028474658-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\disableregistrytools deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88FED34C-F0CA-4636-A375-3CB6248B04CD}\ not found.
File {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ee0c71a9-bd81-11df-a637-806e6f6e6963}\ not found.
ADS C:\ProgramData\TEMP:1CE11B51 deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Ivan
->Temp folder emptied: 49431055 bytes
->Temporary Internet Files folder emptied: 4995146 bytes
->Java cache emptied: 65377 bytes
->FireFox cache emptied: 54889097 bytes
->Opera cache emptied: 21691603 bytes
->Flash cache emptied: 783 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20934 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 576000 bytes
Total Files Cleaned = 126,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Ivan
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
OTL by OldTimer - Version 3.2.12.0 log created on 09132010_161654
Files\Folders moved on Reboot...
File move failed. C:\Windows\SysWOW64\ieframe.dll scheduled to be moved on reboot.
C:\Users\Ivan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
Přispějete na provoz fóra?