Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivní kontrola prosím
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
preventivní kontrola prosím
edit
Naposledy upravil(a) hykal dne 14 zář 2010 10:58, celkem upraveno 1 x.
Re: preventivní kontrola prosím
Logfile of random's system information tool 1.08 (written by random/random)
Run by Hykal at 2010-09-14 11:57:15
Microsoft Windows 7 Home Premium
System drive C: has 250 GB (86%) free of 290 GB
Total RAM: 2935 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:57:56, on 14.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Hykal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100819232121.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [Corel File Shell Monitor] C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
O4 - HKLM\..\RunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Hykal\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Efficient Diary.lnk = C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Služba programu Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12823 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100819232121.dll [2010-04-27 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-20 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Centrum.cz Toolbar - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-12-24 284696]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2009-06-24 409744]
"Desktop Disc Tool"=C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-07-01 1484856]
"EfficientDiary"= []
"Corel Photo Downloader"=C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
"Corel File Shell Monitor"=C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe [2010-02-11 165184]
"STToasterLauncher"=C:\Program Files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe [2010-02-11 120128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Hykal\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-31 136176]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Efficient Diary.lnk - C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
OpenOffice.org 3.2.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-09-14 11:57:15 ----D---- C:\rsit
2010-09-14 11:57:15 ----D---- C:\Program Files (x86)\trend micro
2010-09-14 11:43:38 ----D---- C:\Program Files (x86)\Ultimate Process Manager
2010-09-11 20:27:42 ----D---- C:\Users\Hykal\AppData\Roaming\Macrovision
2010-08-29 13:27:35 ----D---- C:\foto
2010-08-24 19:30:48 ----A---- C:\windows\SysWOW64\oleaut32.dll
2010-08-23 22:39:03 ----D---- C:\Users\Hykal\AppData\Roaming\Reallusion
2010-08-23 22:35:53 ----D---- C:\Users\Hykal\AppData\Roaming\Creative
2010-08-23 22:35:53 ----D---- C:\ProgramData\Creative
2010-08-23 21:06:03 ----D---- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
2010-08-21 22:10:42 ----D---- C:\Users\Hykal\AppData\Roaming\WinRAR
2010-08-21 22:10:18 ----D---- C:\Program Files (x86)\WinRAR
2010-08-21 06:56:14 ----D---- C:\windows\SysWOW64\Wat
2010-08-21 06:52:20 ----D---- C:\Program Files (x86)\MSXML 4.0
2010-08-20 11:57:19 ----ASH---- C:\windows\SysWOW64\KGyGaAvL.sys
2010-08-20 11:57:07 ----D---- C:\Users\Hykal\AppData\Roaming\Corel
2010-08-20 11:56:00 ----D---- C:\Users\Hykal\AppData\Roaming\XnView
2010-08-20 11:55:17 ----D---- C:\Program Files (x86)\XnView
2010-08-20 11:54:47 ----D---- C:\ProgramData\Corel
2010-08-20 11:53:53 ----D---- C:\windows\SysWOW64\Spool
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Corel
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Common Files\Corel
2010-08-20 10:19:25 ----D---- C:\ProgramData\Sun
2010-08-20 10:19:23 ----D---- C:\Program Files (x86)\Common Files\Java
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\javaws.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\javaw.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\java.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\deployJava1.dll
2010-08-20 10:18:41 ----D---- C:\Program Files (x86)\Java
2010-08-20 09:51:47 ----D---- C:\Adamvtriku
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\PresentationHostProxy.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\PresentationHost.exe
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\netfxperf.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\mscoree.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\dfshim.dll
2010-08-20 07:51:33 ----A---- C:\windows\SysWOW64\asycfilt.dll
2010-08-20 07:51:31 ----A---- C:\windows\SysWOW64\ntdll.dll
2010-08-20 07:51:29 ----A---- C:\windows\SysWOW64\schannel.dll
2010-08-20 07:51:16 ----A---- C:\windows\SysWOW64\inetcomm.dll
2010-08-20 07:51:15 ----A---- C:\windows\SysWOW64\shell32.dll
2010-08-20 07:51:07 ----A---- C:\windows\SysWOW64\ntoskrnl.exe
2010-08-20 07:51:07 ----A---- C:\windows\SysWOW64\ntkrnlpa.exe
2010-08-20 07:51:02 ----A---- C:\windows\SysWOW64\mshtml.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\wininet.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\urlmon.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\mstime.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\ieframe.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\msfeedssync.exe
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\msfeedsbs.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\jsproxy.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\ieui.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\iepeers.dll
2010-08-20 07:50:57 ----A---- C:\windows\SysWOW64\rtutils.dll
2010-08-20 07:50:48 ----A---- C:\windows\SysWOW64\iccvid.dll
2010-08-20 07:50:45 ----A---- C:\windows\SysWOW64\CPFilters.dll
2010-08-20 07:50:39 ----A---- C:\windows\SysWOW64\msxml3.dll
2010-08-20 07:50:36 ----A---- C:\windows\SysWOW64\sspicli.dll
2010-08-20 07:50:36 ----A---- C:\windows\SysWOW64\secur32.dll
2010-08-20 07:50:34 ----A---- C:\windows\SysWOW64\atmlib.dll
2010-08-20 07:50:34 ----A---- C:\windows\SysWOW64\atmfd.dll
2010-08-20 07:50:31 ----A---- C:\windows\SysWOW64\tzres.dll
2010-08-19 23:43:44 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-08-19 22:26:11 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2010-08-19 22:26:04 ----D---- C:\Program Files (x86)\Microsoft
2010-08-19 22:25:50 ----A---- C:\windows\SysWOW64\d3dx9_32.dll
2010-08-19 22:25:32 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-08-19 22:25:14 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2010-08-19 22:25:09 ----D---- C:\Program Files (x86)\Windows Live
2010-08-19 22:25:00 ----D---- C:\windows\PCHEALTH
2010-08-19 22:19:40 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2010-08-19 22:15:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-08-19 22:14:56 ----D---- C:\ProgramData\CentrumczToolbar
2010-08-19 22:14:55 ----D---- C:\Program Files (x86)\CentrumczToolbar
2010-08-19 22:11:55 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2010-08-19 22:11:26 ----D---- C:\Program Files (x86)\openoffice
2010-08-19 22:00:44 ----D---- C:\Program Files (x86)\Opera
2010-08-19 21:47:01 ----D---- C:\Users\Hykal\AppData\Roaming\skypePM
2010-08-19 21:43:53 ----D---- C:\Users\Hykal\AppData\Roaming\Skype
2010-08-19 21:43:02 ----RD---- C:\Program Files (x86)\Skype
2010-08-19 21:43:02 ----D---- C:\Program Files (x86)\Common Files\Skype
2010-08-19 21:43:00 ----D---- C:\ProgramData\Skype
2010-08-19 21:42:15 ----D---- C:\Program Files (x86)\Efficient Diary
2010-08-19 19:49:21 ----D---- C:\Users\Hykal\AppData\Roaming\Macromedia
2010-08-19 19:49:20 ----D---- C:\Users\Hykal\AppData\Roaming\Adobe
2010-08-19 19:04:54 ----D---- C:\Users\Hykal\AppData\Roaming\Efficient Diary
2010-08-19 18:46:24 ----D---- C:\Users\Hykal\AppData\Roaming\Opera
2010-08-19 18:45:05 ----D---- C:\Users\Hykal\AppData\Roaming\Mozilla
2010-08-19 18:30:57 ----SHD---- C:\System Recovery
2010-08-19 18:29:22 ----D---- C:\Users\Hykal\AppData\Roaming\Roxio
2010-08-19 18:29:21 ----D---- C:\Users\Hykal\AppData\Roaming\Intel Corporation
2010-08-19 18:28:49 ----D---- C:\Users\Hykal\AppData\Roaming\Identities
2010-08-19 18:25:26 ----SD---- C:\Users\Hykal\AppData\Roaming\Microsoft
2010-08-19 18:25:26 ----D---- C:\Users\Hykal\AppData\Roaming\Media Center Programs
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Šablony
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Plocha
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Oblíbené položky
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Nabídka Start
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Dokumenty
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Data aplikací
2010-08-19 18:22:21 ----ASH---- C:\pagefile.sys
======List of files/folders modified in the last 1 months======
2010-09-14 11:57:34 ----D---- C:\windows\Prefetch
2010-09-14 11:57:23 ----D---- C:\windows\Temp
2010-09-14 11:57:15 ----RD---- C:\Program Files (x86)
2010-09-14 09:15:09 ----HD---- C:\ProgramData
2010-09-14 08:28:19 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2010-09-14 08:27:53 ----D---- C:\windows\SysWOW64
2010-09-14 08:27:21 ----A---- C:\windows\SysWOW64\log.txt
2010-09-14 08:05:31 ----D---- C:\windows\System32
2010-09-14 08:05:31 ----D---- C:\windows\inf
2010-09-09 23:39:41 ----SHD---- C:\windows\Installer
2010-09-09 23:39:03 ----SHD---- C:\System Volume Information
2010-08-31 23:40:35 ----SD---- C:\ProgramData\Microsoft
2010-08-31 11:01:00 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2010-08-31 10:57:06 ----RSD---- C:\windows\Fonts
2010-08-25 19:18:06 ----D---- C:\windows\rescache
2010-08-25 19:12:32 ----D---- C:\windows\Logs
2010-08-25 18:47:35 ----D---- C:\windows\winsxs
2010-08-25 08:02:57 ----D---- C:\windows\AppPatch
2010-08-21 11:20:53 ----D---- C:\windows\Microsoft.NET
2010-08-21 11:20:45 ----RSD---- C:\windows\assembly
2010-08-21 06:56:22 ----D---- C:\Program Files (x86)\Windows Mail
2010-08-21 06:56:21 ----D---- C:\windows\SysWOW64\migration
2010-08-21 06:56:21 ----D---- C:\Program Files (x86)\Internet Explorer
2010-08-21 06:56:13 ----D---- C:\windows\ehome
2010-08-21 06:53:17 ----D---- C:\Windows
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Common Files
2010-08-20 07:54:14 ----D---- C:\windows\SysWOW64\cs-CZ
2010-08-20 07:52:37 ----D---- C:\windows\debug
2010-08-19 23:43:37 ----RD---- C:\Program Files
2010-08-19 23:20:57 ----D---- C:\Program Files (x86)\McAfee
2010-08-19 23:15:24 ----D---- C:\ProgramData\McAfee
2010-08-19 20:49:53 ----D---- C:\windows\Tasks
2010-08-19 19:47:29 ----D---- C:\windows\SoftwareDistribution
2010-08-19 18:28:44 ----SHD---- C:\$Recycle.Bin
2010-08-19 18:28:35 ----D---- C:\windows\WISTools
2010-08-19 18:25:26 ----RD---- C:\Users
2010-08-19 18:22:52 ----D---- C:\Dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys []
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys []
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R1 mfenlfk;McAfee NDIS Light Filter; C:\windows\system32\DRIVERS\mfenlfk.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys []
R3 BCM42RLY;BCM42RLY; C:\windows\system32\drivers\BCM42RLY.sys []
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\windows\system32\DRIVERS\bcmwl664.sys []
R3 BcmVWL;Broadcom Virtual Wireless; C:\windows\system32\DRIVERS\bcmvwl64.sys []
R3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys []
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\windows\system32\DRIVERS\CtClsFlt.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys []
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys []
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys []
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys []
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys []
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys []
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys []
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys []
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys []
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys []
S3 mfeavfk01;McAfee Inc.; C:\windows\SysWOW64\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys []
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe [2010-03-17 89600]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-02 864032]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-17 268824]
R2 McMPFSvc;McAfee Služba programu Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-01-06 199032]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-04-27 244840]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-04-27 148520]
R2 ProtexisLicensing;ProtexisLicensing; C:\windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-03-04 658656]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\STacSV64.exe [2010-03-17 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-17 2320920]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2010-02-03 48128]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2010-04-15 509416]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe []
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
-----------------EOF-----------------
Run by Hykal at 2010-09-14 11:57:15
Microsoft Windows 7 Home Premium
System drive C: has 250 GB (86%) free of 290 GB
Total RAM: 2935 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:57:56, on 14.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hykal\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Hykal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100819232121.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [Corel File Shell Monitor] C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
O4 - HKLM\..\RunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Hykal\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Efficient Diary.lnk = C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Služba programu Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12823 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100819232121.dll [2010-04-27 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-20 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Centrum.cz Toolbar - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-12-24 284696]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2009-06-24 409744]
"Desktop Disc Tool"=C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-07-01 1484856]
"EfficientDiary"= []
"Corel Photo Downloader"=C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
"Corel File Shell Monitor"=C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe [2010-02-11 165184]
"STToasterLauncher"=C:\Program Files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe [2010-02-11 120128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Hykal\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-31 136176]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Efficient Diary.lnk - C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
OpenOffice.org 3.2.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-09-14 11:57:15 ----D---- C:\rsit
2010-09-14 11:57:15 ----D---- C:\Program Files (x86)\trend micro
2010-09-14 11:43:38 ----D---- C:\Program Files (x86)\Ultimate Process Manager
2010-09-11 20:27:42 ----D---- C:\Users\Hykal\AppData\Roaming\Macrovision
2010-08-29 13:27:35 ----D---- C:\foto
2010-08-24 19:30:48 ----A---- C:\windows\SysWOW64\oleaut32.dll
2010-08-23 22:39:03 ----D---- C:\Users\Hykal\AppData\Roaming\Reallusion
2010-08-23 22:35:53 ----D---- C:\Users\Hykal\AppData\Roaming\Creative
2010-08-23 22:35:53 ----D---- C:\ProgramData\Creative
2010-08-23 21:06:03 ----D---- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
2010-08-21 22:10:42 ----D---- C:\Users\Hykal\AppData\Roaming\WinRAR
2010-08-21 22:10:18 ----D---- C:\Program Files (x86)\WinRAR
2010-08-21 06:56:14 ----D---- C:\windows\SysWOW64\Wat
2010-08-21 06:52:20 ----D---- C:\Program Files (x86)\MSXML 4.0
2010-08-20 11:57:19 ----ASH---- C:\windows\SysWOW64\KGyGaAvL.sys
2010-08-20 11:57:07 ----D---- C:\Users\Hykal\AppData\Roaming\Corel
2010-08-20 11:56:00 ----D---- C:\Users\Hykal\AppData\Roaming\XnView
2010-08-20 11:55:17 ----D---- C:\Program Files (x86)\XnView
2010-08-20 11:54:47 ----D---- C:\ProgramData\Corel
2010-08-20 11:53:53 ----D---- C:\windows\SysWOW64\Spool
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Corel
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Common Files\Corel
2010-08-20 10:19:25 ----D---- C:\ProgramData\Sun
2010-08-20 10:19:23 ----D---- C:\Program Files (x86)\Common Files\Java
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\javaws.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\javaw.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\java.exe
2010-08-20 10:18:56 ----A---- C:\windows\SysWOW64\deployJava1.dll
2010-08-20 10:18:41 ----D---- C:\Program Files (x86)\Java
2010-08-20 09:51:47 ----D---- C:\Adamvtriku
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\PresentationHostProxy.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\PresentationHost.exe
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\netfxperf.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\mscoree.dll
2010-08-20 07:56:02 ----A---- C:\windows\SysWOW64\dfshim.dll
2010-08-20 07:51:33 ----A---- C:\windows\SysWOW64\asycfilt.dll
2010-08-20 07:51:31 ----A---- C:\windows\SysWOW64\ntdll.dll
2010-08-20 07:51:29 ----A---- C:\windows\SysWOW64\schannel.dll
2010-08-20 07:51:16 ----A---- C:\windows\SysWOW64\inetcomm.dll
2010-08-20 07:51:15 ----A---- C:\windows\SysWOW64\shell32.dll
2010-08-20 07:51:07 ----A---- C:\windows\SysWOW64\ntoskrnl.exe
2010-08-20 07:51:07 ----A---- C:\windows\SysWOW64\ntkrnlpa.exe
2010-08-20 07:51:02 ----A---- C:\windows\SysWOW64\mshtml.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\wininet.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\urlmon.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\mstime.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\ieframe.dll
2010-08-20 07:51:01 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\msfeedssync.exe
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\msfeedsbs.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\jsproxy.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\ieui.dll
2010-08-20 07:51:00 ----A---- C:\windows\SysWOW64\iepeers.dll
2010-08-20 07:50:57 ----A---- C:\windows\SysWOW64\rtutils.dll
2010-08-20 07:50:48 ----A---- C:\windows\SysWOW64\iccvid.dll
2010-08-20 07:50:45 ----A---- C:\windows\SysWOW64\CPFilters.dll
2010-08-20 07:50:39 ----A---- C:\windows\SysWOW64\msxml3.dll
2010-08-20 07:50:36 ----A---- C:\windows\SysWOW64\sspicli.dll
2010-08-20 07:50:36 ----A---- C:\windows\SysWOW64\secur32.dll
2010-08-20 07:50:34 ----A---- C:\windows\SysWOW64\atmlib.dll
2010-08-20 07:50:34 ----A---- C:\windows\SysWOW64\atmfd.dll
2010-08-20 07:50:31 ----A---- C:\windows\SysWOW64\tzres.dll
2010-08-19 23:43:44 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-08-19 22:26:11 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2010-08-19 22:26:04 ----D---- C:\Program Files (x86)\Microsoft
2010-08-19 22:25:50 ----A---- C:\windows\SysWOW64\d3dx9_32.dll
2010-08-19 22:25:32 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-08-19 22:25:14 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2010-08-19 22:25:09 ----D---- C:\Program Files (x86)\Windows Live
2010-08-19 22:25:00 ----D---- C:\windows\PCHEALTH
2010-08-19 22:19:40 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2010-08-19 22:15:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-08-19 22:14:56 ----D---- C:\ProgramData\CentrumczToolbar
2010-08-19 22:14:55 ----D---- C:\Program Files (x86)\CentrumczToolbar
2010-08-19 22:11:55 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2010-08-19 22:11:26 ----D---- C:\Program Files (x86)\openoffice
2010-08-19 22:00:44 ----D---- C:\Program Files (x86)\Opera
2010-08-19 21:47:01 ----D---- C:\Users\Hykal\AppData\Roaming\skypePM
2010-08-19 21:43:53 ----D---- C:\Users\Hykal\AppData\Roaming\Skype
2010-08-19 21:43:02 ----RD---- C:\Program Files (x86)\Skype
2010-08-19 21:43:02 ----D---- C:\Program Files (x86)\Common Files\Skype
2010-08-19 21:43:00 ----D---- C:\ProgramData\Skype
2010-08-19 21:42:15 ----D---- C:\Program Files (x86)\Efficient Diary
2010-08-19 19:49:21 ----D---- C:\Users\Hykal\AppData\Roaming\Macromedia
2010-08-19 19:49:20 ----D---- C:\Users\Hykal\AppData\Roaming\Adobe
2010-08-19 19:04:54 ----D---- C:\Users\Hykal\AppData\Roaming\Efficient Diary
2010-08-19 18:46:24 ----D---- C:\Users\Hykal\AppData\Roaming\Opera
2010-08-19 18:45:05 ----D---- C:\Users\Hykal\AppData\Roaming\Mozilla
2010-08-19 18:30:57 ----SHD---- C:\System Recovery
2010-08-19 18:29:22 ----D---- C:\Users\Hykal\AppData\Roaming\Roxio
2010-08-19 18:29:21 ----D---- C:\Users\Hykal\AppData\Roaming\Intel Corporation
2010-08-19 18:28:49 ----D---- C:\Users\Hykal\AppData\Roaming\Identities
2010-08-19 18:25:26 ----SD---- C:\Users\Hykal\AppData\Roaming\Microsoft
2010-08-19 18:25:26 ----D---- C:\Users\Hykal\AppData\Roaming\Media Center Programs
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Šablony
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Plocha
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Oblíbené položky
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Nabídka Start
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Dokumenty
2010-08-19 18:25:04 ----SHD---- C:\ProgramData\Data aplikací
2010-08-19 18:22:21 ----ASH---- C:\pagefile.sys
======List of files/folders modified in the last 1 months======
2010-09-14 11:57:34 ----D---- C:\windows\Prefetch
2010-09-14 11:57:23 ----D---- C:\windows\Temp
2010-09-14 11:57:15 ----RD---- C:\Program Files (x86)
2010-09-14 09:15:09 ----HD---- C:\ProgramData
2010-09-14 08:28:19 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2010-09-14 08:27:53 ----D---- C:\windows\SysWOW64
2010-09-14 08:27:21 ----A---- C:\windows\SysWOW64\log.txt
2010-09-14 08:05:31 ----D---- C:\windows\System32
2010-09-14 08:05:31 ----D---- C:\windows\inf
2010-09-09 23:39:41 ----SHD---- C:\windows\Installer
2010-09-09 23:39:03 ----SHD---- C:\System Volume Information
2010-08-31 23:40:35 ----SD---- C:\ProgramData\Microsoft
2010-08-31 11:01:00 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2010-08-31 10:57:06 ----RSD---- C:\windows\Fonts
2010-08-25 19:18:06 ----D---- C:\windows\rescache
2010-08-25 19:12:32 ----D---- C:\windows\Logs
2010-08-25 18:47:35 ----D---- C:\windows\winsxs
2010-08-25 08:02:57 ----D---- C:\windows\AppPatch
2010-08-21 11:20:53 ----D---- C:\windows\Microsoft.NET
2010-08-21 11:20:45 ----RSD---- C:\windows\assembly
2010-08-21 06:56:22 ----D---- C:\Program Files (x86)\Windows Mail
2010-08-21 06:56:21 ----D---- C:\windows\SysWOW64\migration
2010-08-21 06:56:21 ----D---- C:\Program Files (x86)\Internet Explorer
2010-08-21 06:56:13 ----D---- C:\windows\ehome
2010-08-21 06:53:17 ----D---- C:\Windows
2010-08-20 11:52:32 ----D---- C:\Program Files (x86)\Common Files
2010-08-20 07:54:14 ----D---- C:\windows\SysWOW64\cs-CZ
2010-08-20 07:52:37 ----D---- C:\windows\debug
2010-08-19 23:43:37 ----RD---- C:\Program Files
2010-08-19 23:20:57 ----D---- C:\Program Files (x86)\McAfee
2010-08-19 23:15:24 ----D---- C:\ProgramData\McAfee
2010-08-19 20:49:53 ----D---- C:\windows\Tasks
2010-08-19 19:47:29 ----D---- C:\windows\SoftwareDistribution
2010-08-19 18:28:44 ----SHD---- C:\$Recycle.Bin
2010-08-19 18:28:35 ----D---- C:\windows\WISTools
2010-08-19 18:25:26 ----RD---- C:\Users
2010-08-19 18:22:52 ----D---- C:\Dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys []
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys []
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R1 mfenlfk;McAfee NDIS Light Filter; C:\windows\system32\DRIVERS\mfenlfk.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys []
R3 BCM42RLY;BCM42RLY; C:\windows\system32\drivers\BCM42RLY.sys []
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\windows\system32\DRIVERS\bcmwl664.sys []
R3 BcmVWL;Broadcom Virtual Wireless; C:\windows\system32\DRIVERS\bcmvwl64.sys []
R3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys []
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\windows\system32\DRIVERS\CtClsFlt.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys []
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys []
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys []
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys []
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys []
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys []
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys []
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys []
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys []
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys []
S3 mfeavfk01;McAfee Inc.; C:\windows\SysWOW64\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys []
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe [2010-03-17 89600]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-02 864032]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-17 268824]
R2 McMPFSvc;McAfee Služba programu Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-01-06 199032]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-04-27 244840]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-04-27 148520]
R2 ProtexisLicensing;ProtexisLicensing; C:\windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-03-04 658656]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\STacSV64.exe [2010-03-17 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-17 2320920]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2010-02-03 48128]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2010-04-15 509416]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe []
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
-----------------EOF-----------------
Re: preventivní kontrola prosím
Dobrý večer 
Jaký problém máte s počítačem?
Jaký problém máte s počítačem?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
dobrý večer
na 1/2 je to prevence, ale trochu mě na to přivedlo Aukro, na které se mi nejde přihlásit a stále dokola mi to dává napsat bezpečnostní kód, že z mé IP dochází k mnoha přístupům.
na 1/2 je to prevence, ale trochu mě na to přivedlo Aukro, na které se mi nejde přihlásit a stále dokola mi to dává napsat bezpečnostní kód, že z mé IP dochází k mnoha přístupům.
Re: preventivní kontrola prosím
Jaké máte připojení, kabel nebo wifi? Je Vás víc v jedné síti?
Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Stahněte MBAM z mého podpisu-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
je to wifi 5gHz, nemám pevnou IP myslím, že je to 1:25
Re: preventivní kontrola prosím
Udělejte ten mbam.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
tak tady je to OK
Re: preventivní kontrola prosím
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
bohužel se to po 5min zasekne ...
- Přílohy
-
- eror.jpg
- (216.03 KiB) Staženo 140 x
Re: preventivní kontrola prosím
Spusťte ho bez skriptu
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
OTL logfile created on: 15.9.2010 11:40:16 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Hykal\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free
6,00 Gb Paging File | 3,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283,34 Gb Total Space | 245,06 Gb Free Space | 86,49% Space Free | Partition Type: NTFS
Drive D: | 3,87 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,84 Gb Total Space | 0,03 Gb Free Space | 1,59% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: HYKAL-PC
Current User Name: Hykal
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
PRC - [2010.09.03 02:58:56 | 000,975,928 | ---- | M] (Google Inc.) -- C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010.06.07 21:12:12 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010.06.07 21:12:08 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2010.04.16 22:12:30 | 000,111,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
PRC - [2010.04.16 18:36:42 | 000,026,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
PRC - [2010.03.31 18:42:56 | 000,786,432 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
PRC - [2010.03.25 23:08:06 | 001,573,376 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2010.03.17 23:37:16 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010.03.17 23:34:12 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.03.04 19:28:08 | 000,658,656 | ---- | M] (SoftThinks) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2009.12.24 00:39:04 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009.12.24 00:39:02 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009.10.19 16:22:48 | 009,713,152 | ---- | M] (Efficient Software) -- C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
PRC - [2009.10.15 10:10:44 | 001,169,904 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
PRC - [2009.10.15 10:10:28 | 000,498,160 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2009.06.24 23:21:38 | 000,409,744 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008.01.15 15:18:10 | 000,016,200 | R--- | M] () -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
PRC - [2007.06.05 13:20:32 | 000,177,704 | ---- | M] () -- C:\Windows\SysWOW64\PSIService.exe
========== Modules (SafeList) ==========
MOD - [2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.27 17:16:24 | 000,244,840 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV:64bit: - [2010.04.27 17:16:24 | 000,148,520 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2010.04.15 09:45:10 | 000,509,416 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2010.03.17 23:29:08 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2010.03.17 23:27:52 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McOobeSv)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2010.02.03 08:13:10 | 000,048,128 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2010.01.06 01:04:02 | 000,199,032 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.02 01:54:02 | 000,864,032 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2010.04.28 07:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010.03.17 23:37:16 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010.03.17 23:34:12 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010.03.04 19:28:08 | 000,658,656 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2009.12.24 00:39:04 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Úložná technologie Intel(R)
SRV - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2007.06.05 13:20:32 | 000,177,704 | ---- | M] () [Auto | Start_Pending] -- C:\Windows\SysWOW64\PSIService.exe -- (ProtexisLicensing)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2010.04.28 08:57:50 | 000,061,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010.04.27 17:16:24 | 000,528,616 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,440,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2010.04.27 17:16:24 | 000,279,752 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,189,880 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,121,504 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,093,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2010.04.27 17:16:24 | 000,075,288 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,062,416 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2010.04.01 01:47:08 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010.03.17 23:44:44 | 000,301,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010.03.17 23:41:48 | 000,325,152 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.17 23:33:06 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2010.03.17 23:29:52 | 000,232,480 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010.03.17 23:27:14 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010.02.27 02:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010.02.03 16:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2010.02.03 08:13:08 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2010.02.03 08:13:08 | 000,020,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmvwl64.sys -- (BcmVWL)
DRV:64bit: - [2010.02.03 08:13:06 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009.12.17 17:42:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.09 10:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009.07.03 08:26:34 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2009.07.03 08:26:34 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009.07.03 08:26:34 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009.07.03 08:26:34 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2009.06.15 20:06:42 | 000,172,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006.11.01 18:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\URLSearchHook: {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\software\mozilla\Firefox\Extensions\\Cetrumcz@igeared: C:\Program Files (x86)\CentrumczToolbar\Firefox\Cetrumcz@igeared [2010.08.20 08:56:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.08.20 08:56:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.08.20 08:56:48 | 000,000,000 | ---D | M]
[2010.08.19 18:45:18 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Mozilla\Extensions
[2010.08.20 08:36:55 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Mozilla\Firefox\Profiles\87cvj2kj.default\extensions
[2010.08.20 07:45:10 | 000,001,819 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Mozilla\Firefox\Profiles\87cvj2kj.default\searchplugins\bing.xml
[2010.08.20 08:56:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.08.19 22:16:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.19 22:16:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.04.27 17:16:24 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\components\Scriptff.dll
[2010.08.20 10:18:43 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.02.12 00:11:32 | 000,001,425 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\Cetrumcz_igeared.xml
[2010.01.16 02:50:40 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.16 02:50:40 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.16 02:50:40 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.16 02:50:40 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.16 02:50:40 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20100819232121.dll (McAfee, Inc.)
O2 - BHO: (CentrumczToolbar BHO) - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20100819232121.dll (McAfee, Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Centrum.cz Toolbar) - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\Toolbar\WebBrowser: (Centrum.cz Toolbar) - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Corel File Shell Monitor] C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
O4 - HKLM..\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [EfficientDiary] File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4:64bit: - HKLM..\RunOnce: [DSUpdateLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe (Dell)
O4 - HKLM..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe (Softthinks)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\RunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk = C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe (Efficient Software)
O4 - Startup: C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.250.128.34 195.250.128.234
O18:64bit: - Protocol\Handler\centrumcztoolbar {61A97628-7C82-4315-957A-C74C2CDD85DF} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\centrumcztoolbar {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.07.08 14:55:39 | 000,000,000 | ---D | M] - D:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2007.12.07 16:07:04 | 002,688,288 | R--- | M] () - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2008.01.09 21:24:36 | 000,003,007 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{40dbc992-8bed-11df-936e-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{40dbc992-8bed-11df-936e-806e6f6e6963}\Shell\AutoRun\command - "" = D:\autorun.exe -- [2007.12.07 16:07:04 | 002,688,288 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.09.15 07:07:53 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
[2010.09.14 22:58:56 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Malwarebytes
[2010.09.14 22:58:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysWow64\drivers\mbamswissarmy.sys
[2010.09.14 22:58:48 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2010.09.14 22:58:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.09.14 22:58:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.09.14 11:57:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\trend micro
[2010.09.14 11:57:15 | 000,000,000 | ---D | C] -- C:\rsit
[2010.09.14 11:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ultimate Process Manager
[2010.09.13 11:03:29 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Desktop\Corel Auto-Preserve
[2010.09.11 20:27:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Macrovision
[2010.08.31 11:07:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Corel User Files
[2010.08.29 13:27:35 | 000,000,000 | ---D | C] -- C:\foto
[2010.08.24 19:30:48 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
[2010.08.23 22:39:03 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Reallusion
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Dell WebCam Central
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Creative
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2010.08.23 21:06:03 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
[2010.08.21 22:10:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\WinRAR
[2010.08.21 22:10:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010.08.21 06:56:14 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2010.08.21 06:56:13 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Wat
[2010.08.21 06:52:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2010.08.20 11:58:12 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Moje prezentace Corel
[2010.08.20 11:58:11 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Corel
[2010.08.20 11:57:07 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\My PSP Files
[2010.08.20 11:57:07 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Corel
[2010.08.20 11:56:00 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\XnView
[2010.08.20 11:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XnView
[2010.08.20 11:54:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2010.08.20 11:53:53 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Spool
[2010.08.20 11:52:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel
[2010.08.20 11:52:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2010.08.20 10:21:46 | 000,000,000 | ---D | C] -- C:\Users\Hykal\kbpki
[2010.08.20 10:19:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.08.20 10:19:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.08.20 10:18:56 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\deployJava1.dll
[2010.08.20 10:18:56 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaws.exe
[2010.08.20 10:18:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaw.exe
[2010.08.20 10:18:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\java.exe
[2010.08.20 10:18:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.08.20 09:51:47 | 000,000,000 | ---D | C] -- C:\Adamvtriku
[2010.08.20 07:56:02 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dfshim.dll
[2010.08.20 07:56:02 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dfshim.dll
[2010.08.20 07:56:02 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHost.exe
[2010.08.20 07:56:02 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHost.exe
[2010.08.20 07:56:02 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHostProxy.dll
[2010.08.20 07:56:02 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHostProxy.dll
[2010.08.20 07:56:02 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netfxperf.dll
[2010.08.20 07:56:02 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netfxperf.dll
[2010.08.20 07:55:49 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\browserchoice.exe
[2010.08.20 07:51:31 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2010.08.20 07:51:08 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2010.08.20 07:51:07 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2010.08.20 07:51:07 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2010.08.20 07:51:00 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2010.08.20 07:51:00 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2010.08.20 07:51:00 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2010.08.20 07:51:00 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2010.08.20 07:51:00 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2010.08.20 07:51:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2010.08.20 07:50:57 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rtutils.dll
[2010.08.20 07:50:57 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rtutils.dll
[2010.08.20 07:50:48 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\windows\SysWow64\iccvid.dll
[2010.08.20 07:50:45 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CPFilters.dll
[2010.08.20 07:50:45 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CPFilters.dll
[2010.08.20 07:50:45 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdri.dll
[2010.08.20 07:50:45 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mpg2splt.ax
[2010.08.20 07:50:45 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mpg2splt.ax
[2010.08.20 07:50:44 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSNP.ax
[2010.08.20 07:50:44 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSNP.ax
[2010.08.20 07:50:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2010.08.20 07:50:36 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsasrv.dll
[2010.08.20 07:50:34 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
[2010.08.20 07:50:34 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2010.08.20 07:50:34 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\windows\SysNative\atmlib.dll
[2010.08.20 07:50:34 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2010.08.19 23:45:21 | 000,000,000 | R-SD | C] -- C:\Users\Hykal\Documents\My Stationery
[2010.08.19 23:44:30 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Tracing
[2010.08.19 23:43:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010.08.19 23:43:38 | 000,061,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\fssfltr.sys
[2010.08.19 23:43:38 | 000,000,000 | ---D | C] -- C:\windows\SysNative\DRVSTORE
[2010.08.19 23:43:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010.08.19 22:26:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
[2010.08.19 22:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.08.19 22:25:50 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_32.dll
[2010.08.19 22:25:50 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_32.dll
[2010.08.19 22:25:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010.08.19 22:25:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.08.19 22:25:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.08.19 22:25:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.08.19 22:25:00 | 000,000,000 | ---D | C] -- C:\windows\PCHEALTH
[2010.08.19 22:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010.08.19 22:16:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Centrum.cz Toolbar
[2010.08.19 22:15:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.08.19 22:14:56 | 000,000,000 | ---D | C] -- C:\ProgramData\CentrumczToolbar
[2010.08.19 22:14:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CentrumczToolbar
[2010.08.19 22:11:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2010.08.19 22:11:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\openoffice
[2010.08.19 22:00:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2010.08.19 21:54:56 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\MigWiz
[2010.08.19 21:47:01 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\skypePM
[2010.08.19 21:43:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Skype
[2010.08.19 21:43:02 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2010.08.19 21:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2010.08.19 21:43:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2010.08.19 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Efficient Diary
[2010.08.19 21:39:44 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Adobe
[2010.08.19 20:53:23 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\EfficientPIM Backup
[2010.08.19 20:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Efficient Diary
[2010.08.19 20:49:44 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Google
[2010.08.19 19:49:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Macromedia
[2010.08.19 19:49:20 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Adobe
[2010.08.19 19:39:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Diagnostics
[2010.08.19 19:16:29 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\EfficientPIM AutoBackup
[2010.08.19 19:04:54 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Efficient Diary
[2010.08.19 18:46:24 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Opera
[2010.08.19 18:46:24 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Opera
[2010.08.19 18:45:05 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Mozilla
[2010.08.19 18:45:05 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Mozilla
[2010.08.19 18:43:48 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Moje záložní soubory
[2010.08.19 18:30:57 | 000,000,000 | -HSD | C] -- C:\System Recovery
[2010.08.19 18:29:22 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Roxio
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Složka Bluetooth Exchange
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Intel Corporation
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Broadcom
[2010.08.19 18:28:57 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Searches
[2010.08.19 18:28:49 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Identities
[2010.08.19 18:28:45 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Contacts
[2010.08.19 18:28:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\VirtualStore
[2010.08.19 18:28:38 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\SoftThinks
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\Temporary Internet Files
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Šablony
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Soubory cookie
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\SendTo
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Poslední
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Okolní tiskárny
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Okolní síť
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Obrázky
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Nabídka Start
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Local Settings
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Hudba
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\History
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Filmy
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Dokumenty
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Data aplikací
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\Data aplikací
[2010.08.19 18:25:26 | 000,000,000 | --SD | C] -- C:\Users\Hykal\AppData\Roaming\Microsoft
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Videos
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Saved Games
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Pictures
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Music
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Links
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Favorites
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Downloads
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Dokumenty
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Desktop
[2010.08.19 18:25:26 | 000,000,000 | -H-D | C] -- C:\Users\Hykal\AppData
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Temp
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Microsoft
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Media Center Programs
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
========== Files - Modified Within 30 Days ==========
[2010.09.15 11:46:10 | 001,835,008 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT
[2010.09.15 11:41:26 | 000,001,056 | -HS- | M] () -- C:\windows\SysWow64\KGyGaAvL.sys
[2010.09.15 11:37:53 | 000,000,962 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
[2010.09.15 11:37:36 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2010.09.15 08:21:20 | 000,221,212 | ---- | M] () -- C:\Users\Hykal\Desktop\eror.jpg
[2010.09.15 08:03:06 | 001,802,240 | ---- | M] () -- C:\Users\Hykal\Desktop\QWSDALIJQL-100707 – kopie.edfbak
[2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
[2010.09.14 22:58:52 | 000,001,015 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.14 20:54:01 | 000,000,910 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
[2010.09.14 11:45:07 | 000,000,834 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2010.09.14 08:34:51 | 000,013,872 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.14 08:34:51 | 000,013,872 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.14 08:27:18 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2010.09.14 08:27:09 | 2307,829,760 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.14 08:25:00 | 001,956,554 | -H-- | M] () -- C:\Users\Hykal\AppData\Local\IconCache.db
[2010.09.14 08:05:31 | 001,445,734 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2010.09.14 08:05:31 | 000,622,660 | ---- | M] () -- C:\windows\SysNative\perfh005.dat
[2010.09.14 08:05:31 | 000,607,190 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2010.09.14 08:05:31 | 000,118,810 | ---- | M] () -- C:\windows\SysNative\perfc005.dat
[2010.09.14 08:05:31 | 000,103,568 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2010.09.12 08:02:20 | 000,036,371 | ---- | M] () -- C:\Users\Hykal\Desktop\přívěsek Lazok.pdf
[2010.09.12 08:01:53 | 000,030,702 | ---- | M] () -- C:\Users\Hykal\Desktop\přívěse Lazok.cdr
[2010.09.09 23:39:36 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2010.09.09 13:54:04 | 000,054,577 | ---- | M] () -- C:\Users\Hykal\Desktop\medailon.jpg
[2010.09.09 08:00:32 | 000,002,405 | ---- | M] () -- C:\Users\Hykal\Desktop\Google Chrome.lnk
[2010.09.08 20:47:00 | 068,661,906 | ---- | M] () -- C:\Users\Hykal\Desktop\hadek.wmv
[2010.09.08 20:39:25 | 000,017,321 | ---- | M] () -- C:\Users\Hykal\Desktop\hadek.wlmp
[2010.09.07 12:21:45 | 000,007,680 | ---- | M] () -- C:\Users\Hykal\Desktop\honza plat.xls
[2010.09.03 14:17:54 | 000,318,403 | ---- | M] () -- C:\Users\Hykal\Desktop\šablona do B ozdobná.pdf
[2010.09.03 14:17:54 | 000,101,583 | ---- | M] () -- C:\Users\Hykal\Desktop\sablony_pro_B_2010.pdf
[2010.09.03 14:17:54 | 000,025,134 | ---- | M] () -- C:\Users\Hykal\Desktop\šablony do B.jpg
[2010.09.03 07:25:27 | 001,661,752 | ---- | M] () -- C:\Users\Hykal\Desktop\šablony.pdf
[2010.09.03 07:25:27 | 000,130,933 | ---- | M] () -- C:\Users\Hykal\Desktop\sablony_2010.pdf
[2010.09.03 07:25:27 | 000,039,509 | ---- | M] () -- C:\Users\Hykal\Desktop\cenik_cast_frezy.pdf
[2010.09.01 06:50:10 | 002,369,040 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2010.08.31 11:08:47 | 000,966,666 | ---- | M] () -- C:\Users\Hykal\Documents\Ivana Vysloužilová.jpg
[2010.08.31 10:59:54 | 000,095,560 | ---- | M] () -- C:\Users\Hykal\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.08.29 13:27:55 | 000,000,657 | ---- | M] () -- C:\Users\Hykal\Desktop\foto.lnk
[2010.08.24 07:46:43 | 000,030,075 | ---- | M] () -- C:\Users\Hykal\Desktop\křeslo.jpg
[2010.08.23 21:06:27 | 000,001,241 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010.08.20 11:54:17 | 000,002,382 | ---- | M] () -- C:\Users\Public\Desktop\Corel Paint Shop Pro Photo X2.lnk
[2010.08.20 10:18:43 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\deployJava1.dll
[2010.08.20 10:18:43 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaws.exe
[2010.08.20 10:18:43 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaw.exe
[2010.08.20 10:18:43 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\java.exe
[2010.08.20 09:55:04 | 000,001,577 | ---- | M] () -- C:\Users\Hykal\Desktop\Adamvtriku.lnk
[2010.08.20 08:56:50 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.08.19 22:12:30 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.08.19 21:47:03 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2010.08.19 21:43:03 | 000,002,533 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.19 21:42:16 | 000,001,068 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk
[2010.08.19 21:42:16 | 000,001,014 | ---- | M] () -- C:\Users\Hykal\Desktop\Efficient Diary.lnk
[2010.08.19 19:00:45 | 000,524,288 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.19 19:00:45 | 000,524,288 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.19 19:00:45 | 000,065,536 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.19 18:25:27 | 000,000,020 | -HS- | M] () -- C:\Users\Hykal\ntuser.ini
[2010.08.19 18:24:04 | 000,060,248 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2010.08.19 18:24:04 | 000,060,248 | ---- | M] () -- C:\windows\SysNative\license.rtf
========== Files Created - No Company Name ==========
[2010.09.15 08:21:20 | 000,221,212 | ---- | C] () -- C:\Users\Hykal\Desktop\eror.jpg
[2010.09.14 22:58:52 | 000,001,015 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.12 08:02:19 | 000,036,371 | ---- | C] () -- C:\Users\Hykal\Desktop\přívěsek Lazok.pdf
[2010.09.12 08:01:53 | 000,030,702 | ---- | C] () -- C:\Users\Hykal\Desktop\přívěse Lazok.cdr
[2010.09.09 13:54:02 | 000,054,577 | ---- | C] () -- C:\Users\Hykal\Desktop\medailon.jpg
[2010.09.08 20:44:12 | 068,661,906 | ---- | C] () -- C:\Users\Hykal\Desktop\hadek.wmv
[2010.09.08 20:31:41 | 000,017,321 | ---- | C] () -- C:\Users\Hykal\Desktop\hadek.wlmp
[2010.09.07 11:39:21 | 000,007,680 | ---- | C] () -- C:\Users\Hykal\Desktop\honza plat.xls
[2010.09.03 14:17:54 | 000,318,403 | ---- | C] () -- C:\Users\Hykal\Desktop\šablona do B ozdobná.pdf
[2010.09.03 14:17:54 | 000,101,583 | ---- | C] () -- C:\Users\Hykal\Desktop\sablony_pro_B_2010.pdf
[2010.09.03 14:17:54 | 000,025,134 | ---- | C] () -- C:\Users\Hykal\Desktop\šablony do B.jpg
[2010.09.03 07:25:27 | 001,661,752 | ---- | C] () -- C:\Users\Hykal\Desktop\šablony.pdf
[2010.09.03 07:25:27 | 000,130,933 | ---- | C] () -- C:\Users\Hykal\Desktop\sablony_2010.pdf
[2010.09.03 07:25:27 | 000,039,509 | ---- | C] () -- C:\Users\Hykal\Desktop\cenik_cast_frezy.pdf
[2010.08.31 11:08:38 | 000,966,666 | ---- | C] () -- C:\Users\Hykal\Documents\Ivana Vysloužilová.jpg
[2010.08.29 13:27:55 | 000,000,657 | ---- | C] () -- C:\Users\Hykal\Desktop\foto.lnk
[2010.08.24 07:46:43 | 000,030,075 | ---- | C] () -- C:\Users\Hykal\Desktop\křeslo.jpg
[2010.08.23 21:06:27 | 000,001,241 | ---- | C] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010.08.20 11:57:19 | 000,001,056 | -HS- | C] () -- C:\windows\SysWow64\KGyGaAvL.sys
[2010.08.20 11:54:17 | 000,002,382 | ---- | C] () -- C:\Users\Public\Desktop\Corel Paint Shop Pro Photo X2.lnk
[2010.08.20 09:54:19 | 000,001,577 | ---- | C] () -- C:\Users\Hykal\Desktop\Adamvtriku.lnk
[2010.08.20 08:56:50 | 000,001,945 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.08.19 22:12:30 | 000,001,106 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.08.19 22:00:46 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2010.08.19 21:47:03 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.08.19 21:43:03 | 000,002,533 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.19 21:42:16 | 000,001,068 | ---- | C] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk
[2010.08.19 21:42:16 | 000,001,014 | ---- | C] () -- C:\Users\Hykal\Desktop\Efficient Diary.lnk
[2010.08.19 20:51:39 | 000,002,405 | ---- | C] () -- C:\Users\Hykal\Desktop\Google Chrome.lnk
[2010.08.19 20:49:53 | 000,000,962 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
[2010.08.19 20:49:53 | 000,000,910 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
[2010.08.19 19:10:16 | 001,802,240 | ---- | C] () -- C:\Users\Hykal\Desktop\QWSDALIJQL-100707 – kopie.edfbak
[2010.08.19 18:25:27 | 000,524,288 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.19 18:25:27 | 000,000,020 | -HS- | C] () -- C:\Users\Hykal\ntuser.ini
[2010.08.19 18:25:26 | 001,835,008 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT
[2010.08.19 18:25:26 | 000,524,288 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.19 18:25:26 | 000,262,144 | -HS- | C] () -- C:\Users\Hykal\ntuser.dat.LOG1
[2010.08.19 18:25:26 | 000,065,536 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.19 18:25:26 | 000,000,000 | -HS- | C] () -- C:\Users\Hykal\ntuser.dat.LOG2
[2010.07.10 11:00:48 | 000,208,896 | ---- | C] () -- C:\windows\SysWow64\iglhsip32.dll
[2010.07.10 11:00:48 | 000,143,360 | ---- | C] () -- C:\windows\SysWow64\iglhcp32.dll
[2010.07.10 10:56:12 | 000,000,191 | ---- | C] () -- C:\windows\Prelaunch.ini
[2010.07.10 10:56:12 | 000,000,147 | ---- | C] () -- C:\windows\WisPriority.ini
[2010.07.10 10:56:12 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2010.07.10 10:56:12 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini
[2010.07.10 10:56:12 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2010.07.10 10:56:12 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2010.07.10 10:56:12 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
========== LOP Check ==========
[2010.08.20 08:52:22 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Efficient Diary
[2010.08.23 21:06:03 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
[2010.08.19 18:46:24 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Opera
[2010.09.14 13:04:05 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\XnView
[2009.07.14 07:08:49 | 000,010,994 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Hykal\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free
6,00 Gb Paging File | 3,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283,34 Gb Total Space | 245,06 Gb Free Space | 86,49% Space Free | Partition Type: NTFS
Drive D: | 3,87 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,84 Gb Total Space | 0,03 Gb Free Space | 1,59% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: HYKAL-PC
Current User Name: Hykal
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
PRC - [2010.09.03 02:58:56 | 000,975,928 | ---- | M] (Google Inc.) -- C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010.06.07 21:12:12 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010.06.07 21:12:08 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2010.04.16 22:12:30 | 000,111,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
PRC - [2010.04.16 18:36:42 | 000,026,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
PRC - [2010.03.31 18:42:56 | 000,786,432 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
PRC - [2010.03.25 23:08:06 | 001,573,376 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2010.03.17 23:37:16 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010.03.17 23:34:12 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.03.04 19:28:08 | 000,658,656 | ---- | M] (SoftThinks) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2009.12.24 00:39:04 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009.12.24 00:39:02 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009.10.19 16:22:48 | 009,713,152 | ---- | M] (Efficient Software) -- C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe
PRC - [2009.10.15 10:10:44 | 001,169,904 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
PRC - [2009.10.15 10:10:28 | 000,498,160 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2009.06.24 23:21:38 | 000,409,744 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008.01.15 15:18:10 | 000,016,200 | R--- | M] () -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
PRC - [2007.06.05 13:20:32 | 000,177,704 | ---- | M] () -- C:\Windows\SysWOW64\PSIService.exe
========== Modules (SafeList) ==========
MOD - [2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.27 17:16:24 | 000,244,840 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV:64bit: - [2010.04.27 17:16:24 | 000,148,520 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2010.04.15 09:45:10 | 000,509,416 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2010.03.17 23:29:08 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2010.03.17 23:27:52 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McOobeSv)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2010.03.10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2010.02.03 08:13:10 | 000,048,128 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2010.01.06 01:04:02 | 000,199,032 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.02 01:54:02 | 000,864,032 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2010.04.28 07:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010.03.17 23:37:16 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010.03.17 23:34:12 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010.03.04 19:28:08 | 000,658,656 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2009.12.24 00:39:04 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Úložná technologie Intel(R)
SRV - [2009.01.14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2007.06.05 13:20:32 | 000,177,704 | ---- | M] () [Auto | Start_Pending] -- C:\Windows\SysWOW64\PSIService.exe -- (ProtexisLicensing)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2010.04.28 08:57:50 | 000,061,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010.04.27 17:16:24 | 000,528,616 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,440,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2010.04.27 17:16:24 | 000,279,752 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,189,880 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,121,504 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,093,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2010.04.27 17:16:24 | 000,075,288 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2010.04.27 17:16:24 | 000,062,416 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2010.04.01 01:47:08 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010.03.17 23:44:44 | 000,301,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010.03.17 23:41:48 | 000,325,152 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.17 23:33:06 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2010.03.17 23:29:52 | 000,232,480 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010.03.17 23:27:14 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010.02.27 02:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010.02.03 16:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2010.02.03 08:13:08 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2010.02.03 08:13:08 | 000,020,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmvwl64.sys -- (BcmVWL)
DRV:64bit: - [2010.02.03 08:13:06 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009.12.17 17:42:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.09 10:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009.07.03 08:26:34 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2009.07.03 08:26:34 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009.07.03 08:26:34 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009.07.03 08:26:34 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2009.06.15 20:06:42 | 000,172,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006.11.01 18:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\URLSearchHook: {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\software\mozilla\Firefox\Extensions\\Cetrumcz@igeared: C:\Program Files (x86)\CentrumczToolbar\Firefox\Cetrumcz@igeared [2010.08.20 08:56:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.08.20 08:56:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.08.20 08:56:48 | 000,000,000 | ---D | M]
[2010.08.19 18:45:18 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Mozilla\Extensions
[2010.08.20 08:36:55 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Mozilla\Firefox\Profiles\87cvj2kj.default\extensions
[2010.08.20 07:45:10 | 000,001,819 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Mozilla\Firefox\Profiles\87cvj2kj.default\searchplugins\bing.xml
[2010.08.20 08:56:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.08.19 22:16:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.19 22:16:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.04.27 17:16:24 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\components\Scriptff.dll
[2010.08.20 10:18:43 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.02.12 00:11:32 | 000,001,425 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\Cetrumcz_igeared.xml
[2010.01.16 02:50:40 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.16 02:50:40 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.16 02:50:40 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.16 02:50:40 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.16 02:50:40 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20100819232121.dll (McAfee, Inc.)
O2 - BHO: (CentrumczToolbar BHO) - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20100819232121.dll (McAfee, Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Centrum.cz Toolbar) - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\Toolbar\WebBrowser: (Centrum.cz Toolbar) - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Corel File Shell Monitor] C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
O4 - HKLM..\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [EfficientDiary] File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4:64bit: - HKLM..\RunOnce: [DSUpdateLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe (Dell)
O4 - HKLM..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe (Softthinks)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\RunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk = C:\Program Files (x86)\Efficient Diary\EfficientDiary.exe (Efficient Software)
O4 - Startup: C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.250.128.34 195.250.128.234
O18:64bit: - Protocol\Handler\centrumcztoolbar {61A97628-7C82-4315-957A-C74C2CDD85DF} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\centrumcztoolbar {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.07.08 14:55:39 | 000,000,000 | ---D | M] - D:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2007.12.07 16:07:04 | 002,688,288 | R--- | M] () - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2008.01.09 21:24:36 | 000,003,007 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{40dbc992-8bed-11df-936e-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{40dbc992-8bed-11df-936e-806e6f6e6963}\Shell\AutoRun\command - "" = D:\autorun.exe -- [2007.12.07 16:07:04 | 002,688,288 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.09.15 07:07:53 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
[2010.09.14 22:58:56 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Malwarebytes
[2010.09.14 22:58:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysWow64\drivers\mbamswissarmy.sys
[2010.09.14 22:58:48 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2010.09.14 22:58:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.09.14 22:58:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.09.14 11:57:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\trend micro
[2010.09.14 11:57:15 | 000,000,000 | ---D | C] -- C:\rsit
[2010.09.14 11:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ultimate Process Manager
[2010.09.13 11:03:29 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Desktop\Corel Auto-Preserve
[2010.09.11 20:27:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Macrovision
[2010.08.31 11:07:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Corel User Files
[2010.08.29 13:27:35 | 000,000,000 | ---D | C] -- C:\foto
[2010.08.24 19:30:48 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
[2010.08.23 22:39:03 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Reallusion
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Dell WebCam Central
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Creative
[2010.08.23 22:35:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2010.08.23 21:06:03 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
[2010.08.21 22:10:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\WinRAR
[2010.08.21 22:10:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010.08.21 06:56:14 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2010.08.21 06:56:13 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Wat
[2010.08.21 06:52:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2010.08.20 11:58:12 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Moje prezentace Corel
[2010.08.20 11:58:11 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Corel
[2010.08.20 11:57:07 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\My PSP Files
[2010.08.20 11:57:07 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Corel
[2010.08.20 11:56:00 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\XnView
[2010.08.20 11:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XnView
[2010.08.20 11:54:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2010.08.20 11:53:53 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Spool
[2010.08.20 11:52:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel
[2010.08.20 11:52:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2010.08.20 10:21:46 | 000,000,000 | ---D | C] -- C:\Users\Hykal\kbpki
[2010.08.20 10:19:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.08.20 10:19:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010.08.20 10:18:56 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\deployJava1.dll
[2010.08.20 10:18:56 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaws.exe
[2010.08.20 10:18:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaw.exe
[2010.08.20 10:18:56 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\java.exe
[2010.08.20 10:18:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010.08.20 09:51:47 | 000,000,000 | ---D | C] -- C:\Adamvtriku
[2010.08.20 07:56:02 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dfshim.dll
[2010.08.20 07:56:02 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dfshim.dll
[2010.08.20 07:56:02 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHost.exe
[2010.08.20 07:56:02 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHost.exe
[2010.08.20 07:56:02 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHostProxy.dll
[2010.08.20 07:56:02 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHostProxy.dll
[2010.08.20 07:56:02 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netfxperf.dll
[2010.08.20 07:56:02 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netfxperf.dll
[2010.08.20 07:55:49 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\browserchoice.exe
[2010.08.20 07:51:31 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2010.08.20 07:51:08 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2010.08.20 07:51:07 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2010.08.20 07:51:07 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2010.08.20 07:51:00 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2010.08.20 07:51:00 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2010.08.20 07:51:00 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2010.08.20 07:51:00 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2010.08.20 07:51:00 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2010.08.20 07:51:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2010.08.20 07:50:57 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rtutils.dll
[2010.08.20 07:50:57 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rtutils.dll
[2010.08.20 07:50:48 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\windows\SysWow64\iccvid.dll
[2010.08.20 07:50:45 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CPFilters.dll
[2010.08.20 07:50:45 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CPFilters.dll
[2010.08.20 07:50:45 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdri.dll
[2010.08.20 07:50:45 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mpg2splt.ax
[2010.08.20 07:50:45 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mpg2splt.ax
[2010.08.20 07:50:44 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSNP.ax
[2010.08.20 07:50:44 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSNP.ax
[2010.08.20 07:50:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2010.08.20 07:50:36 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsasrv.dll
[2010.08.20 07:50:34 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
[2010.08.20 07:50:34 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2010.08.20 07:50:34 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\windows\SysNative\atmlib.dll
[2010.08.20 07:50:34 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2010.08.19 23:45:21 | 000,000,000 | R-SD | C] -- C:\Users\Hykal\Documents\My Stationery
[2010.08.19 23:44:30 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Tracing
[2010.08.19 23:43:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010.08.19 23:43:38 | 000,061,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\fssfltr.sys
[2010.08.19 23:43:38 | 000,000,000 | ---D | C] -- C:\windows\SysNative\DRVSTORE
[2010.08.19 23:43:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010.08.19 22:26:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
[2010.08.19 22:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.08.19 22:25:50 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_32.dll
[2010.08.19 22:25:50 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_32.dll
[2010.08.19 22:25:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010.08.19 22:25:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.08.19 22:25:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.08.19 22:25:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.08.19 22:25:00 | 000,000,000 | ---D | C] -- C:\windows\PCHEALTH
[2010.08.19 22:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010.08.19 22:16:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Centrum.cz Toolbar
[2010.08.19 22:15:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.08.19 22:14:56 | 000,000,000 | ---D | C] -- C:\ProgramData\CentrumczToolbar
[2010.08.19 22:14:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CentrumczToolbar
[2010.08.19 22:11:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2010.08.19 22:11:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\openoffice
[2010.08.19 22:00:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2010.08.19 21:54:56 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\MigWiz
[2010.08.19 21:47:01 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\skypePM
[2010.08.19 21:43:53 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Skype
[2010.08.19 21:43:02 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2010.08.19 21:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2010.08.19 21:43:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2010.08.19 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Efficient Diary
[2010.08.19 21:39:44 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Adobe
[2010.08.19 20:53:23 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\EfficientPIM Backup
[2010.08.19 20:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\Efficient Diary
[2010.08.19 20:49:44 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Google
[2010.08.19 19:49:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Macromedia
[2010.08.19 19:49:20 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Adobe
[2010.08.19 19:39:36 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Diagnostics
[2010.08.19 19:16:29 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\EfficientPIM AutoBackup
[2010.08.19 19:04:54 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Efficient Diary
[2010.08.19 18:46:24 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Opera
[2010.08.19 18:46:24 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Opera
[2010.08.19 18:45:05 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Mozilla
[2010.08.19 18:45:05 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Mozilla
[2010.08.19 18:43:48 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Moje záložní soubory
[2010.08.19 18:30:57 | 000,000,000 | -HSD | C] -- C:\System Recovery
[2010.08.19 18:29:22 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Roxio
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\Documents\Složka Bluetooth Exchange
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Intel Corporation
[2010.08.19 18:29:21 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Broadcom
[2010.08.19 18:28:57 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Searches
[2010.08.19 18:28:49 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Identities
[2010.08.19 18:28:45 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Contacts
[2010.08.19 18:28:42 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\VirtualStore
[2010.08.19 18:28:38 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\SoftThinks
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\Temporary Internet Files
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Šablony
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Soubory cookie
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\SendTo
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Poslední
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Okolní tiskárny
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Okolní síť
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Obrázky
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Nabídka Start
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Local Settings
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Hudba
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\History
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Documents\Filmy
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Dokumenty
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\Data aplikací
[2010.08.19 18:25:27 | 000,000,000 | -HSD | C] -- C:\Users\Hykal\AppData\Local\Data aplikací
[2010.08.19 18:25:26 | 000,000,000 | --SD | C] -- C:\Users\Hykal\AppData\Roaming\Microsoft
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Videos
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Saved Games
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Pictures
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Music
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Links
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Favorites
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Downloads
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Dokumenty
[2010.08.19 18:25:26 | 000,000,000 | R--D | C] -- C:\Users\Hykal\Desktop
[2010.08.19 18:25:26 | 000,000,000 | -H-D | C] -- C:\Users\Hykal\AppData
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Temp
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Local\Microsoft
[2010.08.19 18:25:26 | 000,000,000 | ---D | C] -- C:\Users\Hykal\AppData\Roaming\Media Center Programs
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010.08.19 18:25:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
========== Files - Modified Within 30 Days ==========
[2010.09.15 11:46:10 | 001,835,008 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT
[2010.09.15 11:41:26 | 000,001,056 | -HS- | M] () -- C:\windows\SysWow64\KGyGaAvL.sys
[2010.09.15 11:37:53 | 000,000,962 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
[2010.09.15 11:37:36 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2010.09.15 08:21:20 | 000,221,212 | ---- | M] () -- C:\Users\Hykal\Desktop\eror.jpg
[2010.09.15 08:03:06 | 001,802,240 | ---- | M] () -- C:\Users\Hykal\Desktop\QWSDALIJQL-100707 – kopie.edfbak
[2010.09.15 07:07:18 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Hykal\Desktop\OTL.exe
[2010.09.14 22:58:52 | 000,001,015 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.14 20:54:01 | 000,000,910 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
[2010.09.14 11:45:07 | 000,000,834 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2010.09.14 08:34:51 | 000,013,872 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.14 08:34:51 | 000,013,872 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.14 08:27:18 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2010.09.14 08:27:09 | 2307,829,760 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.14 08:25:00 | 001,956,554 | -H-- | M] () -- C:\Users\Hykal\AppData\Local\IconCache.db
[2010.09.14 08:05:31 | 001,445,734 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2010.09.14 08:05:31 | 000,622,660 | ---- | M] () -- C:\windows\SysNative\perfh005.dat
[2010.09.14 08:05:31 | 000,607,190 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2010.09.14 08:05:31 | 000,118,810 | ---- | M] () -- C:\windows\SysNative\perfc005.dat
[2010.09.14 08:05:31 | 000,103,568 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2010.09.12 08:02:20 | 000,036,371 | ---- | M] () -- C:\Users\Hykal\Desktop\přívěsek Lazok.pdf
[2010.09.12 08:01:53 | 000,030,702 | ---- | M] () -- C:\Users\Hykal\Desktop\přívěse Lazok.cdr
[2010.09.09 23:39:36 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2010.09.09 13:54:04 | 000,054,577 | ---- | M] () -- C:\Users\Hykal\Desktop\medailon.jpg
[2010.09.09 08:00:32 | 000,002,405 | ---- | M] () -- C:\Users\Hykal\Desktop\Google Chrome.lnk
[2010.09.08 20:47:00 | 068,661,906 | ---- | M] () -- C:\Users\Hykal\Desktop\hadek.wmv
[2010.09.08 20:39:25 | 000,017,321 | ---- | M] () -- C:\Users\Hykal\Desktop\hadek.wlmp
[2010.09.07 12:21:45 | 000,007,680 | ---- | M] () -- C:\Users\Hykal\Desktop\honza plat.xls
[2010.09.03 14:17:54 | 000,318,403 | ---- | M] () -- C:\Users\Hykal\Desktop\šablona do B ozdobná.pdf
[2010.09.03 14:17:54 | 000,101,583 | ---- | M] () -- C:\Users\Hykal\Desktop\sablony_pro_B_2010.pdf
[2010.09.03 14:17:54 | 000,025,134 | ---- | M] () -- C:\Users\Hykal\Desktop\šablony do B.jpg
[2010.09.03 07:25:27 | 001,661,752 | ---- | M] () -- C:\Users\Hykal\Desktop\šablony.pdf
[2010.09.03 07:25:27 | 000,130,933 | ---- | M] () -- C:\Users\Hykal\Desktop\sablony_2010.pdf
[2010.09.03 07:25:27 | 000,039,509 | ---- | M] () -- C:\Users\Hykal\Desktop\cenik_cast_frezy.pdf
[2010.09.01 06:50:10 | 002,369,040 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2010.08.31 11:08:47 | 000,966,666 | ---- | M] () -- C:\Users\Hykal\Documents\Ivana Vysloužilová.jpg
[2010.08.31 10:59:54 | 000,095,560 | ---- | M] () -- C:\Users\Hykal\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.08.29 13:27:55 | 000,000,657 | ---- | M] () -- C:\Users\Hykal\Desktop\foto.lnk
[2010.08.24 07:46:43 | 000,030,075 | ---- | M] () -- C:\Users\Hykal\Desktop\křeslo.jpg
[2010.08.23 21:06:27 | 000,001,241 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010.08.20 11:54:17 | 000,002,382 | ---- | M] () -- C:\Users\Public\Desktop\Corel Paint Shop Pro Photo X2.lnk
[2010.08.20 10:18:43 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\deployJava1.dll
[2010.08.20 10:18:43 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaws.exe
[2010.08.20 10:18:43 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\javaw.exe
[2010.08.20 10:18:43 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\SysWow64\java.exe
[2010.08.20 09:55:04 | 000,001,577 | ---- | M] () -- C:\Users\Hykal\Desktop\Adamvtriku.lnk
[2010.08.20 08:56:50 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.08.19 22:12:30 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.08.19 21:47:03 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2010.08.19 21:43:03 | 000,002,533 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.19 21:42:16 | 000,001,068 | ---- | M] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk
[2010.08.19 21:42:16 | 000,001,014 | ---- | M] () -- C:\Users\Hykal\Desktop\Efficient Diary.lnk
[2010.08.19 19:00:45 | 000,524,288 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.19 19:00:45 | 000,524,288 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.19 19:00:45 | 000,065,536 | -HS- | M] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.19 18:25:27 | 000,000,020 | -HS- | M] () -- C:\Users\Hykal\ntuser.ini
[2010.08.19 18:24:04 | 000,060,248 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2010.08.19 18:24:04 | 000,060,248 | ---- | M] () -- C:\windows\SysNative\license.rtf
========== Files Created - No Company Name ==========
[2010.09.15 08:21:20 | 000,221,212 | ---- | C] () -- C:\Users\Hykal\Desktop\eror.jpg
[2010.09.14 22:58:52 | 000,001,015 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.12 08:02:19 | 000,036,371 | ---- | C] () -- C:\Users\Hykal\Desktop\přívěsek Lazok.pdf
[2010.09.12 08:01:53 | 000,030,702 | ---- | C] () -- C:\Users\Hykal\Desktop\přívěse Lazok.cdr
[2010.09.09 13:54:02 | 000,054,577 | ---- | C] () -- C:\Users\Hykal\Desktop\medailon.jpg
[2010.09.08 20:44:12 | 068,661,906 | ---- | C] () -- C:\Users\Hykal\Desktop\hadek.wmv
[2010.09.08 20:31:41 | 000,017,321 | ---- | C] () -- C:\Users\Hykal\Desktop\hadek.wlmp
[2010.09.07 11:39:21 | 000,007,680 | ---- | C] () -- C:\Users\Hykal\Desktop\honza plat.xls
[2010.09.03 14:17:54 | 000,318,403 | ---- | C] () -- C:\Users\Hykal\Desktop\šablona do B ozdobná.pdf
[2010.09.03 14:17:54 | 000,101,583 | ---- | C] () -- C:\Users\Hykal\Desktop\sablony_pro_B_2010.pdf
[2010.09.03 14:17:54 | 000,025,134 | ---- | C] () -- C:\Users\Hykal\Desktop\šablony do B.jpg
[2010.09.03 07:25:27 | 001,661,752 | ---- | C] () -- C:\Users\Hykal\Desktop\šablony.pdf
[2010.09.03 07:25:27 | 000,130,933 | ---- | C] () -- C:\Users\Hykal\Desktop\sablony_2010.pdf
[2010.09.03 07:25:27 | 000,039,509 | ---- | C] () -- C:\Users\Hykal\Desktop\cenik_cast_frezy.pdf
[2010.08.31 11:08:38 | 000,966,666 | ---- | C] () -- C:\Users\Hykal\Documents\Ivana Vysloužilová.jpg
[2010.08.29 13:27:55 | 000,000,657 | ---- | C] () -- C:\Users\Hykal\Desktop\foto.lnk
[2010.08.24 07:46:43 | 000,030,075 | ---- | C] () -- C:\Users\Hykal\Desktop\křeslo.jpg
[2010.08.23 21:06:27 | 000,001,241 | ---- | C] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
[2010.08.20 11:57:19 | 000,001,056 | -HS- | C] () -- C:\windows\SysWow64\KGyGaAvL.sys
[2010.08.20 11:54:17 | 000,002,382 | ---- | C] () -- C:\Users\Public\Desktop\Corel Paint Shop Pro Photo X2.lnk
[2010.08.20 09:54:19 | 000,001,577 | ---- | C] () -- C:\Users\Hykal\Desktop\Adamvtriku.lnk
[2010.08.20 08:56:50 | 000,001,945 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.08.19 22:12:30 | 000,001,106 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.2.lnk
[2010.08.19 22:00:46 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2010.08.19 21:47:03 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.08.19 21:43:03 | 000,002,533 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2010.08.19 21:42:16 | 000,001,068 | ---- | C] () -- C:\Users\Hykal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Diary.lnk
[2010.08.19 21:42:16 | 000,001,014 | ---- | C] () -- C:\Users\Hykal\Desktop\Efficient Diary.lnk
[2010.08.19 20:51:39 | 000,002,405 | ---- | C] () -- C:\Users\Hykal\Desktop\Google Chrome.lnk
[2010.08.19 20:49:53 | 000,000,962 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000UA.job
[2010.08.19 20:49:53 | 000,000,910 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3479966925-1938415850-4037543445-1000Core.job
[2010.08.19 19:10:16 | 001,802,240 | ---- | C] () -- C:\Users\Hykal\Desktop\QWSDALIJQL-100707 – kopie.edfbak
[2010.08.19 18:25:27 | 000,524,288 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010.08.19 18:25:27 | 000,000,020 | -HS- | C] () -- C:\Users\Hykal\ntuser.ini
[2010.08.19 18:25:26 | 001,835,008 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT
[2010.08.19 18:25:26 | 000,524,288 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010.08.19 18:25:26 | 000,262,144 | -HS- | C] () -- C:\Users\Hykal\ntuser.dat.LOG1
[2010.08.19 18:25:26 | 000,065,536 | -HS- | C] () -- C:\Users\Hykal\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010.08.19 18:25:26 | 000,000,000 | -HS- | C] () -- C:\Users\Hykal\ntuser.dat.LOG2
[2010.07.10 11:00:48 | 000,208,896 | ---- | C] () -- C:\windows\SysWow64\iglhsip32.dll
[2010.07.10 11:00:48 | 000,143,360 | ---- | C] () -- C:\windows\SysWow64\iglhcp32.dll
[2010.07.10 10:56:12 | 000,000,191 | ---- | C] () -- C:\windows\Prelaunch.ini
[2010.07.10 10:56:12 | 000,000,147 | ---- | C] () -- C:\windows\WisPriority.ini
[2010.07.10 10:56:12 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2010.07.10 10:56:12 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini
[2010.07.10 10:56:12 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2010.07.10 10:56:12 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2010.07.10 10:56:12 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
========== LOP Check ==========
[2010.08.20 08:52:22 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Efficient Diary
[2010.08.23 21:06:03 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\OpenOffice.org
[2010.08.19 18:46:24 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\Opera
[2010.09.14 13:04:05 | 000,000,000 | ---D | M] -- C:\Users\Hykal\AppData\Roaming\XnView
[2009.07.14 07:08:49 | 000,010,994 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
Re: preventivní kontrola prosím
OTL Extras logfile created on: 15.9.2010 11:40:17 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Hykal\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free
6,00 Gb Paging File | 3,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283,34 Gb Total Space | 245,06 Gb Free Space | 86,49% Space Free | Partition Type: NTFS
Drive D: | 3,87 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,84 Gb Total Space | 0,03 Gb Free Space | 1,59% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: HYKAL-PC
Current User Name: Hykal
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3479966925-1938415850-4037543445-1000\SOFTWARE\Classes\<extension>]
.hta [@ = XnView.Image] -- Reg Error: Key error. File not found
.html [@ = ChromeHTML] -- C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{26A24AE4-039D-4CA4-87B4-2F86416020FF}" = Java(TM) 6 Update 20 (64-bit)
"{7F05E704-30A6-421A-97A7-8EEB1C7FF011}" = Corel Shell Extension - 64Bit
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Software Bluetooth WIDCOMM
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C1A128BD-CDCA-4111-B812-DC4D7C10F305}" = Windows Live Zabezpečení rodiny
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"DW WLAN Card Utility" = DW WLAN Card Utility
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW(R) Graphics Suite X4
"_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1407B87C-36E3-4FC1-9051-D08B21E1096F}" = Windows Live Sync
"{18E65799-76BD-46EF-9E53-972FE5A40736}" = Opera 10.62
"{1A9DAB4D-46CD-4CBF-A9FC-28D8AA8D2FCF}" = CorelDRAW Graphics Suite X4 - Lang BR
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24762012-C6C8-4AAD-A02D-71A009FA1683}" = Adobe Flash Player 10 ActiveX
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2FDD487C-A777-4BB5-BD23-56BECE1FF099}" = Windows Live Movie Maker
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3E62B27C-342F-4B44-9331-CA4BC59A586F}" = Asistent pro přihlášení ke službě Windows Live
"{40284D5A-EF61-4937-92CD-B7CB20C4C87B}" = Windows Live Fotogalerie
"{40FC81EA-21F7-44FB-A6F2-A4D6328F4C4F}" = CorelDRAW Graphics Suite X4 - Lang SU
"{479A749B-1684-4881-8266-BF8DD22251E7}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{6834B8AE-D23B-4B26-A919-6515844CF2BA}" = CorelDRAW Graphics Suite X4 - Lang PL
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7F05E704-30A6-421A-97A7-8EEB1C7FF000}" = CorelDRAW Graphics Suite X4
"{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW Graphics SUite X4 - ICA
"{7F05E704-30A6-421A-97A7-8EEB1C7FF012}" = CorelDRAW Graphics Suite X4 - Capture
"{7F05E704-30A6-421A-97A7-8EEB1C7FF013}" = CorelDRAW Graphics Suite X4 - Draw
"{7F05E704-30A6-421A-97A7-8EEB1C7FF014}" = CorelDRAW Graphics Suite X4 - PP
"{7F05E704-30A6-421A-97A7-8EEB1C7FF016}" = CorelDRAW Graphics Suite X4 - Content
"{7F05E704-30A6-421A-97A7-8EEB1C7FF017}" = CorelDRAW Graphics Suite X4 - Filters
"{7F05E704-30A6-421A-97A7-8EEB1C7FF019}" = CorelDRAW Graphics Suite X4 - FontNav
"{7F05E704-30A6-421A-97A7-8EEB1C7FF100}" = CorelDRAW Graphics Suite X4 - Lang EN
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9CDA415B-974B-4384-8CA6-9327D5B4270B}" = CorelDRAW Graphics Suite X4 - Lang SV
"{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}" = CorelDRAW Graphics Suite X4 - IPM
"{9D306690-3173-42CD-94C6-9EF9318AF24B}" = CorelDRAW Graphics Suite X4 - Lang FR
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A6C27FFF-75EF-4B5B-A64E-F9E128994908}" = CorelDRAW Graphics Suite X4 - Lang NL
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{AEFBAC58-2DDD-4CEF-BDFD-52A5A5F432ED}" = CorelDRAW Graphics Suite X4 - Lang DE
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B61D21B6-469D-4423-B161-62DB20B8A70E}" = Visual Basic for Applications (R) Core - English
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF439B41-0252-48DE-8B8B-0430CB26A181}" = CorelDRAW Graphics Suite X4 - VBA
"{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{CE6557BF-FA56-4C95-91E3-B8C641679DF0}" = Windows Live Messenger
"{D0160DD3-6F62-4F1E-B999-6C68D3AE7390}" = CorelDRAW Graphics Suite X4 - Lang IT
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D2827848-7D2A-4547-9AD1-C965FB3E6344}" = CorelDRAW Graphics Suite X4 - Lang ES
"{D6A1D7F6-79CB-4159-AF03-F21F28080B97}" = Windows Live Toolbar
"{DB81779E-7CC5-4630-BCFC-754004956444}" = Visual Basic for Applications (R) Core
"{E5A10EF8-DBF3-4251-A9CA-423311DBBFC8}" = Windows Live Mail
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F4D69A8D-BB5C-4C3D-A1AD-64C24233EDD6}" = Windows Live Essentials
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FAB43061-FEFB-46E8-A159-96710395DB5E}" = OpenOffice.org 3.2
"{FFFE7261-2318-4227-B827-E9E05E16DFE5}" = CorelDRAW Graphics Suite X4 - Lang CZ
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Centrum.cz Toolbar_is1" = Centrum.cz Toolbar 1.202.012.001
"Dell Webcam Central" = Dell Webcam Central
"Efficient Diary_is1" = Efficient Diary 1.76
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6)" = Mozilla Firefox (3.6)
"MSC" = McAfee Security Center
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XnView_is1" = XnView 1.97.6
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3479966925-1938415850-4037543445-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 22.8.2010 17:55:48 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 23.8.2010 16:50:51 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 25.8.2010 13:07:47 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files (x86)\windows live\photo
gallery\MovieMaker.Exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL na řádku 8. Identita komponenty
nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz je WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definice
je WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 25.8.2010 13:09:13 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search box extension\SRCHBXEX.DLL se nezdařilo. Chyba v souboru
manifestu nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search
box extension\SRCHBXEX.DLL na řádku 2. Neplatná syntaxe XML.
Error - 25.8.2010 13:09:13 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search helper\SearchHelper.dll se nezdařilo. Chyba v souboru manifestu
nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll
na řádku 2. Neplatná syntaxe XML.
Error - 25.8.2010 13:09:24 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search helper\searchhelper.dll se nezdařilo. Chyba v souboru manifestu
nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll
na řádku 2. Neplatná syntaxe XML.
Error - 27.8.2010 18:07:15 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 29.8.2010 4:28:51 | Computer Name = Hykal-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Corel Paint Shop Pro Photo.exe, verze: 12.0.1.1,
časové razítko: 0x478d13e9 Název chybujícího modulu: ntdll.dll, verze: 6.1.7600.16559,
časové razítko: 0x4ba9b29c Kód výjimky: 0xc015000f Posun chyby: 0x00084391 ID chybujícího
procesu: 0xc78 Čas spuštění chybující aplikace: 0x01cb4753e5fc54c5 Cesta k chybující
aplikaci: C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint
Shop Pro Photo.exe Cesta k chybujícímu modulu: C:\windows\SysWOW64\ntdll.dll ID zprávy:
73a08740-b347-11df-a9ef-fd79b5c4c9e7
Error - 29.8.2010 5:03:53 | Computer Name = Hykal-PC | Source = Application Hang | ID = 1002
Description = Program Corel Paint Shop Pro Photo.exe verze 12.0.1.1 přestal spolupracovat
se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 1680 Čas spuštění: 01cb47543d4a1a18 Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe ID
hlášení:
Error - 30.8.2010 14:27:14 | Computer Name = Hykal-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: mcagent.exe, verze: 10.0.575.0, časové razítko:
0x4b998af1 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód
výjimky: 0xc0000005 Posun chyby: 0x0000000011fab310 ID chybujícího procesu: 0x110c
Čas
spuštění chybující aplikace: 0x01cb47466516673c Cesta k chybující aplikaci: C:\Program
Files\mcafee.com\agent\mcagent.exe Cesta k chybujícímu modulu: unknown ID zprávy:
35dc05cf-b464-11df-a9ef-fd79b5c4c9e7
[ System Events ]
Error - 5.9.2010 18:08:10 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 6.9.2010 0:52:26 | Computer Name = Hykal-PC | Source = Service Control Manager | ID = 7024
Description = Služba Windows Search ukončena s chybou %%-1073473536, specifickou
pro službu.
Error - 6.9.2010 0:52:26 | Computer Name = Hykal-PC | Source = Service Control Manager | ID = 7031
Description = Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error - 6.9.2010 7:38:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10016
Description =
Error - 6.9.2010 7:38:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10016
Description =
Error - 6.9.2010 17:18:47 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 7.9.2010 17:12:20 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:37:25 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:37:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:38:22 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
< End of report >
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Hykal\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free
6,00 Gb Paging File | 3,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283,34 Gb Total Space | 245,06 Gb Free Space | 86,49% Space Free | Partition Type: NTFS
Drive D: | 3,87 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,84 Gb Total Space | 0,03 Gb Free Space | 1,59% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: HYKAL-PC
Current User Name: Hykal
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3479966925-1938415850-4037543445-1000\SOFTWARE\Classes\<extension>]
.hta [@ = XnView.Image] -- Reg Error: Key error. File not found
.html [@ = ChromeHTML] -- C:\Users\Hykal\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{26A24AE4-039D-4CA4-87B4-2F86416020FF}" = Java(TM) 6 Update 20 (64-bit)
"{7F05E704-30A6-421A-97A7-8EEB1C7FF011}" = Corel Shell Extension - 64Bit
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Software Bluetooth WIDCOMM
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C1A128BD-CDCA-4111-B812-DC4D7C10F305}" = Windows Live Zabezpečení rodiny
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"DW WLAN Card Utility" = DW WLAN Card Utility
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW(R) Graphics Suite X4
"_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1407B87C-36E3-4FC1-9051-D08B21E1096F}" = Windows Live Sync
"{18E65799-76BD-46EF-9E53-972FE5A40736}" = Opera 10.62
"{1A9DAB4D-46CD-4CBF-A9FC-28D8AA8D2FCF}" = CorelDRAW Graphics Suite X4 - Lang BR
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24762012-C6C8-4AAD-A02D-71A009FA1683}" = Adobe Flash Player 10 ActiveX
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2FDD487C-A777-4BB5-BD23-56BECE1FF099}" = Windows Live Movie Maker
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3E62B27C-342F-4B44-9331-CA4BC59A586F}" = Asistent pro přihlášení ke službě Windows Live
"{40284D5A-EF61-4937-92CD-B7CB20C4C87B}" = Windows Live Fotogalerie
"{40FC81EA-21F7-44FB-A6F2-A4D6328F4C4F}" = CorelDRAW Graphics Suite X4 - Lang SU
"{479A749B-1684-4881-8266-BF8DD22251E7}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{6834B8AE-D23B-4B26-A919-6515844CF2BA}" = CorelDRAW Graphics Suite X4 - Lang PL
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7F05E704-30A6-421A-97A7-8EEB1C7FF000}" = CorelDRAW Graphics Suite X4
"{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW Graphics SUite X4 - ICA
"{7F05E704-30A6-421A-97A7-8EEB1C7FF012}" = CorelDRAW Graphics Suite X4 - Capture
"{7F05E704-30A6-421A-97A7-8EEB1C7FF013}" = CorelDRAW Graphics Suite X4 - Draw
"{7F05E704-30A6-421A-97A7-8EEB1C7FF014}" = CorelDRAW Graphics Suite X4 - PP
"{7F05E704-30A6-421A-97A7-8EEB1C7FF016}" = CorelDRAW Graphics Suite X4 - Content
"{7F05E704-30A6-421A-97A7-8EEB1C7FF017}" = CorelDRAW Graphics Suite X4 - Filters
"{7F05E704-30A6-421A-97A7-8EEB1C7FF019}" = CorelDRAW Graphics Suite X4 - FontNav
"{7F05E704-30A6-421A-97A7-8EEB1C7FF100}" = CorelDRAW Graphics Suite X4 - Lang EN
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9CDA415B-974B-4384-8CA6-9327D5B4270B}" = CorelDRAW Graphics Suite X4 - Lang SV
"{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}" = CorelDRAW Graphics Suite X4 - IPM
"{9D306690-3173-42CD-94C6-9EF9318AF24B}" = CorelDRAW Graphics Suite X4 - Lang FR
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A6C27FFF-75EF-4B5B-A64E-F9E128994908}" = CorelDRAW Graphics Suite X4 - Lang NL
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{AEFBAC58-2DDD-4CEF-BDFD-52A5A5F432ED}" = CorelDRAW Graphics Suite X4 - Lang DE
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B61D21B6-469D-4423-B161-62DB20B8A70E}" = Visual Basic for Applications (R) Core - English
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF439B41-0252-48DE-8B8B-0430CB26A181}" = CorelDRAW Graphics Suite X4 - VBA
"{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{CE6557BF-FA56-4C95-91E3-B8C641679DF0}" = Windows Live Messenger
"{D0160DD3-6F62-4F1E-B999-6C68D3AE7390}" = CorelDRAW Graphics Suite X4 - Lang IT
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D2827848-7D2A-4547-9AD1-C965FB3E6344}" = CorelDRAW Graphics Suite X4 - Lang ES
"{D6A1D7F6-79CB-4159-AF03-F21F28080B97}" = Windows Live Toolbar
"{DB81779E-7CC5-4630-BCFC-754004956444}" = Visual Basic for Applications (R) Core
"{E5A10EF8-DBF3-4251-A9CA-423311DBBFC8}" = Windows Live Mail
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F4D69A8D-BB5C-4C3D-A1AD-64C24233EDD6}" = Windows Live Essentials
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FAB43061-FEFB-46E8-A159-96710395DB5E}" = OpenOffice.org 3.2
"{FFFE7261-2318-4227-B827-E9E05E16DFE5}" = CorelDRAW Graphics Suite X4 - Lang CZ
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Centrum.cz Toolbar_is1" = Centrum.cz Toolbar 1.202.012.001
"Dell Webcam Central" = Dell Webcam Central
"Efficient Diary_is1" = Efficient Diary 1.76
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6)" = Mozilla Firefox (3.6)
"MSC" = McAfee Security Center
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XnView_is1" = XnView 1.97.6
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3479966925-1938415850-4037543445-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 22.8.2010 17:55:48 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 23.8.2010 16:50:51 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 25.8.2010 13:07:47 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files (x86)\windows live\photo
gallery\MovieMaker.Exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL na řádku 8. Identita komponenty
nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz je WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definice
je WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 25.8.2010 13:09:13 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search box extension\SRCHBXEX.DLL se nezdařilo. Chyba v souboru
manifestu nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search
box extension\SRCHBXEX.DLL na řádku 2. Neplatná syntaxe XML.
Error - 25.8.2010 13:09:13 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search helper\SearchHelper.dll se nezdařilo. Chyba v souboru manifestu
nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll
na řádku 2. Neplatná syntaxe XML.
Error - 25.8.2010 13:09:24 | Computer Name = Hykal-PC | Source = SideBySide | ID = 16842811
Description = Generování kontextu aktivace pro c:\program files (x86)\microsoft\search
enhancement pack\search helper\searchhelper.dll se nezdařilo. Chyba v souboru manifestu
nebo zásady c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll
na řádku 2. Neplatná syntaxe XML.
Error - 27.8.2010 18:07:15 | Computer Name = Hykal-PC | Source = EventSystem | ID = 4621
Description =
Error - 29.8.2010 4:28:51 | Computer Name = Hykal-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Corel Paint Shop Pro Photo.exe, verze: 12.0.1.1,
časové razítko: 0x478d13e9 Název chybujícího modulu: ntdll.dll, verze: 6.1.7600.16559,
časové razítko: 0x4ba9b29c Kód výjimky: 0xc015000f Posun chyby: 0x00084391 ID chybujícího
procesu: 0xc78 Čas spuštění chybující aplikace: 0x01cb4753e5fc54c5 Cesta k chybující
aplikaci: C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint
Shop Pro Photo.exe Cesta k chybujícímu modulu: C:\windows\SysWOW64\ntdll.dll ID zprávy:
73a08740-b347-11df-a9ef-fd79b5c4c9e7
Error - 29.8.2010 5:03:53 | Computer Name = Hykal-PC | Source = Application Hang | ID = 1002
Description = Program Corel Paint Shop Pro Photo.exe verze 12.0.1.1 přestal spolupracovat
se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 1680 Čas spuštění: 01cb47543d4a1a18 Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe ID
hlášení:
Error - 30.8.2010 14:27:14 | Computer Name = Hykal-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: mcagent.exe, verze: 10.0.575.0, časové razítko:
0x4b998af1 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód
výjimky: 0xc0000005 Posun chyby: 0x0000000011fab310 ID chybujícího procesu: 0x110c
Čas
spuštění chybující aplikace: 0x01cb47466516673c Cesta k chybující aplikaci: C:\Program
Files\mcafee.com\agent\mcagent.exe Cesta k chybujícímu modulu: unknown ID zprávy:
35dc05cf-b464-11df-a9ef-fd79b5c4c9e7
[ System Events ]
Error - 5.9.2010 18:08:10 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 6.9.2010 0:52:26 | Computer Name = Hykal-PC | Source = Service Control Manager | ID = 7024
Description = Služba Windows Search ukončena s chybou %%-1073473536, specifickou
pro službu.
Error - 6.9.2010 0:52:26 | Computer Name = Hykal-PC | Source = Service Control Manager | ID = 7031
Description = Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error - 6.9.2010 7:38:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10016
Description =
Error - 6.9.2010 7:38:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10016
Description =
Error - 6.9.2010 17:18:47 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 7.9.2010 17:12:20 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:37:25 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:37:56 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
Error - 8.9.2010 17:38:22 | Computer Name = Hykal-PC | Source = DCOM | ID = 10010
Description =
< End of report >
Re: preventivní kontrola prosím
Spustte OTL-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\..\URLSearchHook: {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-3479966925-1938415850-4037543445-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O4 - HKLM..\Run: [EfficientDiary] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\windows\SysWow64\mctadmin.exe File not found
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\ProgramData\ezsidmv.dat
:commands
[emptytemp]
[EMPTYFLASH]
C:\Users\Hykal\Desktop\QWSDALIJQL-100707 – kopie.edfbak
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: preventivní kontrola prosím
jj, je to záloha od diáře
Přispějete na provoz fóra?