VIRY.CZ

Logfile of random's system information tool 1.08 (written by random/random)
Run by Acer at 2010-10-28 18:43:50
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 25 GB (17%) free of 148 GB
Total RAM: 2525 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:44:24, on 28. 10. 2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18975)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\RtHDVCpl.exe
D:\FIFA08\FK\svcl32\svcl32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Acer\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hamachi\hamachi.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\explorer.exe
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\Users\Acer\Desktop\RSIT.exe
C:\Program Files\trend micro\Acer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.mywebsearch.com/mywebsear ... 8Gq7_UZVOA
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: CGBHO - {2AAE80CE-5D5E-4AD2-B722-E9E0A506CE52} - C:\Users\Acer\AppData\Roaming\CashGopher\cashgopherbho.dll
O2 - BHO: GdfrDUEn - {A3CF7606-E683-4375-A372-96B75DA0AEF7} - C:\Program Files\Get Styles\enlbrdr.dll
O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: (no name) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {9565115d-c7d6-46d3-bd63-b67b481a4368} - (no file)
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam .exe" /runcleanupscript
O4 - HKLM\..\Run: [SysVContoller32] D:\FIFA08\FK\svcl32\svcl32.exe
O4 - HKLM\..\Run: [Surfbar] C:\Program Files\Surfbar\Surfbar.exe
O4 - Global Startup: 20Dollars2Surf.lnk = C:\Program Files\20Dollars2Surf\20dollars2surf.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Free YouTube Download - C:\Users\Acer\AppData\Roaming\DVDVideoSoftIEHelpers\youtubedownload.htm
O9 - Extra button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Get Styles\ct.htm
O9 - Extra 'Tools' menuitem: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Get Styles\ct.htm
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/html - {574940E0-1B7A-4881-8FA3-1E809714B156} - C:\Users\Acer\AppData\LocalLow\Microńoft\redir.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Emma Device Management (EmmaDevMgmtSvc) - Sony Ericsson Mobile Communications - C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaDeviceMgmt.exe
O23 - Service: Emma Update Management (EmmaUpdMgmtSvc) - Sony Ericsson Mobile Communications - C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaUpdateMgmt.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1c9906be3877692) (gupdate1c9906be3877692) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: PSPR Control Service (PSPRSERV) - ElcomSoft Co. Ltd. - C:\Program Files\ElcomSoft\Proactive System Password Recovery\psprserv.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Sandra Data Service (SandraDataSrv) - Unknown owner - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe (file missing)
O23 - Service: Sandra Service (SandraTheSrv) - Unknown owner - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10712 bytes

======Scheduled tasks folder======

C:\Windows\tasks\1-Click Maintenance.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002UA.job
C:\Windows\tasks\RegCure Program Check.job
C:\Windows\tasks\RegCure.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-04-02 61888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}]
PC Tools Browser Guard BHO - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2010-01-22 567248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2AAE80CE-5D5E-4AD2-B722-E9E0A506CE52}]
CashGopher BHO - C:\Users\Acer\AppData\Roaming\CashGopher\cashgopherbho.dll [2010-10-04 36352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3CF7606-E683-4375-A372-96B75DA0AEF7}]
GdfrDUEn Class - C:\Program Files\Get Styles\enlbrdr.dll [2010-02-11 185856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2008-06-23 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5A1691B-D188-4419-AD02-90002030B8EE}]
FlashFXP Helper for Internet Explorer - C:\PROGRA~1\FlashFXP\IEFlash.dll [2007-05-16 191096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-04 142896]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C}
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{9565115d-c7d6-46d3-bd63-b67b481a4368}
{472734EA-242A-422B-ADF8-83D1E48CC825} - PC Tools Browser Guard - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2010-01-22 567248]
{D4027C7F-154A-4066-A1AD-4243D8127440}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-09-11 2054360]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-04-28 6111232]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam .exe [2009-09-10 1312080]
"SysVContoller32"=D:\FIFA08\FK\svcl32\svcl32.exe [2007-06-26 328192]
"Surfbar"=C:\Program Files\Surfbar\Surfbar.exe [2010-10-07 1105408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhilipsDM]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2010-04-12 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Acer^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Voobys.lnk]
C:\Users\Acer\AppData\Roaming\Microsoft\Installer\{B72257D6-189D-4CB0-9CDC-26A93536C34B}\_16496df1.exe []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
20Dollars2Surf.lnk - C:\Program Files\20Dollars2Surf\20dollars2surf.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FDCENT.SYS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HideFilesAndFolders_S]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FDCENT.SYS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HideFilesAndFolders_S]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\sandra.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\sandra.exe:*:Enabled:SiSoftware Sandra Lite"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Lite"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Sandra Lite"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\sandra.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\sandra.exe:*:Enabled:SiSoftware Sandra Lite"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Lite"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Sandra Lite"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-10-28 18:43:50 ----D---- C:\rsit
2010-10-27 17:36:18 ----ASH---- C:\hiberfil.sys
2010-10-27 17:27:02 ----A---- C:\Windows\ntbtlog.txt
2010-10-27 14:51:39 ----A---- C:\Windows\system32\gameux.dll
2010-10-27 14:51:37 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-10-27 14:51:37 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-10-24 20:50:27 ----D---- C:\Users\Acer\AppData\Roaming\GameRanger
2010-10-22 21:03:26 ----D---- C:\ProgramData\Lauyan
2010-10-22 21:03:26 ----D---- C:\Program Files\Lauyan
2010-10-21 21:19:51 ----D---- C:\ProgramData\McAfee Security Scan
2010-10-21 21:19:42 ----D---- C:\Program Files\McAfee Security Scan
2010-10-20 20:53:59 ----D---- C:\Program Files\myRuler
2010-10-20 16:46:41 ----D---- C:\Program Files\PhotoFiltre
2010-10-16 20:26:17 ----D---- C:\Users\Acer\AppData\Roaming\PSpad
2010-10-16 20:25:39 ----D---- C:\Program Files\PSPad editor
2010-10-15 19:38:46 ----D---- C:\Users\Acer\AppData\Roaming\CashGopher
2010-10-13 19:05:46 ----A---- C:\Windows\system32\mshtml.dll
2010-10-13 19:05:37 ----A---- C:\Windows\system32\ieframe.dll
2010-10-13 19:05:35 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-13 19:05:34 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-13 19:05:33 ----A---- C:\Windows\system32\urlmon.dll
2010-10-13 19:05:32 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-13 19:05:31 ----A---- C:\Windows\system32\wininet.dll
2010-10-13 19:05:28 ----A---- C:\Windows\system32\mstime.dll
2010-10-13 19:05:28 ----A---- C:\Windows\system32\iertutil.dll
2010-10-13 19:05:27 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-13 19:05:26 ----A---- C:\Windows\system32\occache.dll
2010-10-13 19:05:26 ----A---- C:\Windows\system32\ieUnatt.exe
2010-10-13 19:05:26 ----A---- C:\Windows\system32\ieui.dll
2010-10-13 19:05:26 ----A---- C:\Windows\system32\iepeers.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\iesysprep.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\iesetup.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\iernonce.dll
2010-10-13 19:05:25 ----A---- C:\Windows\system32\ie4uinit.exe
2010-10-13 19:05:24 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-13 19:04:47 ----A---- C:\Windows\system32\wmp.dll
2010-10-13 19:04:44 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-13 19:04:25 ----A---- C:\Windows\system32\ole32.dll
2010-10-13 19:04:20 ----A---- C:\Windows\system32\win32k.sys
2010-10-13 19:04:10 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-13 19:04:10 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-13 19:04:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-13 19:04:09 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-13 19:04:08 ----A---- C:\Windows\system32\netevent.dll
2010-10-13 19:03:55 ----A---- C:\Windows\system32\t2embed.dll
2010-10-13 19:03:51 ----A---- C:\Windows\system32\msshsq.dll
2010-10-13 19:02:48 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-13 19:01:35 ----A---- C:\Windows\system32\schannel.dll
2010-10-13 19:00:36 ----A---- C:\Windows\system32\comctl32.dll
2010-10-13 18:59:57 ----A---- C:\Windows\system32\mfc40.dll
2010-10-13 18:59:56 ----A---- C:\Windows\system32\mfc40u.dll
2010-10-10 19:21:49 ----D---- C:\Program Files\Surfbar
2010-10-09 18:32:31 ----D---- C:\Program Files\20Dollars2Surf
2010-10-09 17:37:58 ----D---- C:\Program Files\PokerStars.NET
2010-10-08 19:13:35 ----D---- C:\Users\Acer\AppData\Roaming\Electronic Arts
2010-10-05 15:50:50 ----D---- C:\Program Files\Mp3 Knife
2010-10-01 17:07:25 ----A---- C:\Windows\Mass eMailer Uninstall Log.txt
2010-10-01 17:01:12 ----D---- C:\Users\Acer\AppData\Roaming\Mass eMailer
2010-10-01 17:01:01 ----D---- C:\Windows\Mass eMailer
2010-09-29 18:09:10 ----D---- C:\Acala3gpMovies
2010-09-29 18:08:42 ----D---- C:\Program Files\Acala 3GP Movies Free
2010-09-29 17:22:47 ----D---- C:\Program Files\Common Files\Common Share
2010-09-29 16:30:15 ----D---- C:\Users\Acer\AppData\Roaming\DVDVideoSoftIEHelpers
2010-09-29 16:29:43 ----D---- C:\Program Files\DVDVideoSoft
2010-09-29 16:29:43 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2010-09-29 15:36:39 ----D---- C:\Users\Acer\AppData\Roaming\IObit
2010-09-29 15:36:37 ----D---- C:\Program Files\IObit
2010-09-29 15:18:24 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 months======

2010-10-28 18:44:25 ----D---- C:\Windows\temp
2010-10-28 18:44:18 ----D---- C:\Users\Acer\AppData\Roaming\Hamachi
2010-10-28 18:44:03 ----D---- C:\Windows\Prefetch
2010-10-28 18:43:53 ----D---- C:\Program Files\trend micro
2010-10-28 18:32:56 ----D---- C:\Program Files\SpeedFan
2010-10-28 14:43:10 ----AD---- C:\ProgramData\Temp
2010-10-28 09:50:33 ----D---- C:\Windows\system32\catroot
2010-10-28 09:50:29 ----D---- C:\Windows\winsxs
2010-10-28 09:07:14 ----D---- C:\Windows\System32
2010-10-28 09:07:14 ----D---- C:\Windows\inf
2010-10-28 09:07:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-10-28 09:03:06 ----D---- C:\$RECYCLE.BIN
2010-10-28 09:01:25 ----RD---- C:\Users
2010-10-27 17:27:02 ----D---- C:\Windows
2010-10-27 15:33:22 ----D---- C:\Windows\AppPatch
2010-10-27 14:54:25 ----SHD---- C:\System Volume Information
2010-10-27 14:49:55 ----D---- C:\Windows\system32\catroot2
2010-10-23 22:25:15 ----SHD---- C:\Windows\Installer
2010-10-23 22:25:04 ----D---- C:\Program Files\Opera
2010-10-22 21:03:26 ----D---- C:\ProgramData
2010-10-22 21:03:26 ----D---- C:\Program Files
2010-10-21 21:19:50 ----D---- C:\ProgramData\McAfee
2010-10-21 21:17:40 ----D---- C:\Program Files\Mozilla Firefox
2010-10-19 11:41:44 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-15 22:11:27 ----D---- C:\ProgramData\Electronic Arts
2010-10-15 22:11:05 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-15 22:05:24 ----D---- C:\Program Files\Electronic Arts
2010-10-14 15:22:07 ----D---- C:\Windows\rescache
2010-10-13 22:18:38 ----D---- C:\Windows\system32\sk-SK
2010-10-13 22:18:38 ----D---- C:\Program Files\Windows Media Player
2010-10-13 22:18:37 ----D---- C:\Windows\system32\en-US
2010-10-13 22:18:37 ----D---- C:\Windows\system32\drivers
2010-10-13 22:18:35 ----D---- C:\Program Files\Internet Explorer
2010-10-13 22:18:34 ----D---- C:\Windows\system32\migration
2010-10-13 21:21:34 ----D---- C:\Windows\system32\WDI
2010-10-13 19:08:13 ----D---- C:\Windows\Debug
2010-10-13 19:07:50 ----A---- C:\Windows\system32\mrt.exe
2010-10-12 13:40:02 ----D---- C:\Users\Acer\AppData\Roaming\Skype
2010-10-11 19:08:47 ----D---- C:\Users\Acer\AppData\Roaming\skypePM
2010-10-09 14:26:32 ----RSD---- C:\Windows\assembly
2010-10-08 18:58:32 ----D---- C:\Windows\system32\Tasks
2010-10-07 20:05:49 ----D---- C:\Windows\Microsoft.NET
2010-10-07 16:47:37 ----D---- C:\ProgramData\KONAMI
2010-10-02 20:37:00 ----D---- C:\Users\Acer\AppData\Roaming\uTorrent
2010-10-02 18:34:40 ----D---- C:\Program Files\EA Sports
2010-09-30 22:00:43 ----D---- C:\Program Files\CCleaner
2010-09-30 15:46:03 ----D---- C:\Program Files\uTorrent
2010-09-29 18:09:47 ----D---- C:\Users\Acer\AppData\Roaming\DivX
2010-09-29 17:22:47 ----D---- C:\Program Files\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ahcix86s;ahcix86s; C:\Windows\system32\DRIVERS\ahcix86s.sys [2008-05-28 171016]
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2008-04-28 14352]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 PCTCore;PCTools KDS; C:\Windows\system32\drivers\PCTCore.sys [2010-03-29 218592]
R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-03-04 18992]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2006-09-24 5248]
R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-30 13824]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2008-05-27 20112]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-09-11 108792]
R1 FDCENT;FDCENT; \??\C:\Windows\system32\drivers\FDCENT.SYS [2007-01-27 47854]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 59388]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-09-11 116008]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-09-11 135048]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-09-11 38240]
R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-03-21 15392]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-02-18 166960]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-04-09 958464]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-07-08 3848192]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-03-27 210432]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2008-05-27 21264]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2008-04-28 54784]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-06-19 33096]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-08-07 25280]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-03-26 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-03-26 207872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-04-28 2127512]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\Windows\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2008-02-27 141408]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2008-05-28 22072]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-03-26 661504]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BthPort;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-02-14 80424]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2007-07-16 80936]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2007-07-16 16168]
S3 catchme;catchme; \??\C:\Users\Acer\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\Acer\AppData\Local\Temp\VWIDAAA.tmp []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-05-11 16608]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-05-30 93968]
S3 KMWDFILTER;HIDUASDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2008-10-09 17408]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 rootrepeal;rootrepeal; \??\C:\Windows\system32\drivers\rootrepeal.sys []
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\Windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\Windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\Windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM); C:\Windows\system32\DRIVERS\s1029bus.sys [2009-05-25 90280]
S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1029mdfl.sys [2009-05-25 15016]
S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1029mdm.sys [2009-05-25 122280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1029mgmt.sys [2009-05-25 115880]
S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1029nd5.sys [2009-05-25 26024]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1029obex.sys [2009-05-25 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1029unic.sys [2009-05-25 116904]
S3 s716bus;Sony Ericsson Device 716 driver (WDM); C:\Windows\system32\DRIVERS\s716bus.sys [2007-06-29 83208]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Sandra.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-07-21 697328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-07-08 692224]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 Browser Defender Update Service;Browser Defender Update Service; C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe [2010-01-22 112592]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
R2 CLHNService;CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2009-04-16 75048]
R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-09-11 735960]
R2 EmmaDevMgmtSvc;Emma Device Management; C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaDeviceMgmt.exe [2010-04-27 306296]
R2 EmmaUpdMgmtSvc;Emma Update Management; C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaUpdateMgmt.exe [2010-04-27 162936]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-03-21 24576]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe [2007-12-06 110592]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 45056]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 131072]
R2 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-06-09 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2010-09-01 215128]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2007-01-09 272024]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe [2010-06-21 173352]
R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe [2009-08-09 603904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate1c9906be3877692;Služba Google Update (gupdate1c9906be3877692); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-16 133104]
S2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt --defaults-file=C:\Program Files\MySQL\MySQL Server 5.0\my.ini MySQL []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-09-11 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-07-14 654848]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PSPRSERV;PSPR Control Service; C:\Program Files\ElcomSoft\Proactive System Password Recovery\psprserv.exe [2009-05-19 69632]
S3 SandraDataSrv;Sandra Data Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe []
S3 SandraTheSrv;Sandra Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe []
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2010-03-11 366840]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2010-03-15 1142224]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-09-11 407336]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2010-06-16 360192]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

Zdravim a pekny den preji

Spyware Doctora mate zakoupeny

Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)

• C:\Program Files\Surfbar\Surfbar.exe
  D:\FIFA08\FK\svcl32\svcl32.exe
  C:\Program Files\20Dollars2Surf\20dollars2surf.exe
• Kliknete na Prochazet
• Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
• Kliknete na Send File
• Pokud na Vas vyskoci obrazovka jako je nize, tak kliknete na ReAnalyse
  
• Vysledek analyzy sem vlozte (jako odkaz)

Poprosim i o druhy log z RSITu s nazvem info.txt, je ulozen v c:\rsit

Surfbar.exe - http://www.virustotal.com/file-scan/rep ... 1288374493
svcl32.exe - žiaden subor ked dam prehladavať tam nemam , tak neviem ...
20dollars2surf.exe - http://www.virustotal.com/file-scan/rep ... 1288376550

Spyware Doctor mám , práve robím kontrolu , ale ako zistím či ho mám zakupeny to neviem ...

+ info z rsitu


info.txt logfile of random's system information tool 1.08 2010-10-28 18:44:32

======Uninstall list======

-->C:\Program Files\Microsoft Games\Age of Empires III\Uninstall AoE3_sK.exe
-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
-->MsiExec.exe /I{8A74DEFD-A224-49CC-AB80-4E88BC730125}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A450831D-25F6-4F42-9662-D000B25E0D82}\Setup.exe" -uninstall
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\Setup.exe" -uninstall
20Dollars2Surf 1.1-->"C:\Program Files\20Dollars2Surf\unins000.exe"
Acala 3GP Movies Free 3.1.1-->"C:\Program Files\Acala 3GP Movies Free\unins000.exe"
Acer Arcade Deluxe-->"C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" /z-uninstall
Acer Arcade Deluxe-->"C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" /z-uninstall
Acer Crystal Eye Webcam 2.0.8-->C:\Program Files\InstallShield Installation Information\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}\setup.exe -runfromtemp -l0x0009 -removeonly
Acer eAudio Management-->"C:\Program Files\InstallShield Installation Information\{57265292-228A-41FA-9AEC-4620CBCC2739}\Setup.exe" -uninstall
Acer eDataSecurity Management-->C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSnstHelper.exe -Operation UNINSTALL
Acer Empowering Technology-->"C:\Program Files\InstallShield Installation Information\{8F1B6239-FEA0-450A-A950-B05276CE177C}\setup.exe" -runfromtemp -l0x001b -removeonly
Acer ePower Management-->"C:\Program Files\InstallShield Installation Information\{58E5844B-7CE2-413D-83D1-99294BF6C74F}\setup.exe" -runfromtemp -l0x001b -removeonly
Acer eRecovery Management-->"C:\Program Files\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x001b -removeonly
Acer eSettings Management-->"C:\Program Files\InstallShield Installation Information\{13D85C14-2B85-419F-AC41-C7F21E68B25D}\setup.exe" -runfromtemp -l0x001b -removeonly
Acer GameZone Console 2.0.1.1-->"C:\Program Files\Acer GameZone\GameConsole\unins000.exe"
Acer GridVista-->C:\Windows\GVUni.exe GridV.UNI
Acer Mobility Center Plug-In-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11316260-6666-467B-AC34-183FCB5D4335}\setup.exe" -l0x1b -removeonly
Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings-->MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe Color EU Recommended Settings-->MsiExec.exe /I{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}
Adobe Color JA Extra Settings-->MsiExec.exe /I{D92B72E2-C854-4738-8ED6-4C3661CC17AE}
Adobe Color NA Extra Settings-->MsiExec.exe /I{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10k_Plugin.exe -maintain plugin
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->C:\Program Files\Common Files\Adobe\Installers\4977c84bcdc298c444ccfbdcccb660d\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{5178C1BB-1EB1-4468-894B-7DE964DDCAA2}
Adobe Reader 8.2.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A82000000003}
Adobe Setup-->MsiExec.exe /I{0901FCE8-5415-4499-BBC8-1AA106DD66E2}
Adobe Setup-->MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup-->MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Agatha Christie Death on the Nile-->"C:\Program Files\Acer GameZone\Agatha Christie Death on the Nile\Uninstall.exe" "C:\Program Files\Acer GameZone\Agatha Christie Death on the Nile\install.log"
Age of Empires III - The Asian Dynasties-->C:\Program Files\InstallShield Installation Information\{C43C1415-3DFC-4089-9A32-0BECF28A6046}\SETUP.EXE -runfromtemp -l0x0409
Age of Empires III - The WarChiefs-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{1C08A24C-B168-407E-A826-68FAF5F20710}
Age of Empires III-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
Alice Greenfingers-->"C:\Program Files\Acer GameZone\Alice Greenfingers\Uninstall.exe" "C:\Program Files\Acer GameZone\Alice Greenfingers\install.log"
ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
AMD USB Audio Driver Filter-->MsiExec.exe /X{A3AB35FA-943E-4799-99DC-46EFD59E998F}
Apple Application Support-->MsiExec.exe /I{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Applian FLV Player-->"C:\Windows\Applian FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
ATF-->C:\Windows\UIA200.exe "C:\Program Files\All Ten Fingers\DelList.lst"
Azada-->"C:\Program Files\Acer GameZone\Azada\Uninstall.exe" "C:\Program Files\Acer GameZone\Azada\install.log"
Backspin Billiards-->"C:\Program Files\Acer GameZone\Backspin Billiards\Uninstall.exe" "C:\Program Files\Acer GameZone\Backspin Billiards\install.log"
Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x9 -removeonly
Big Kahuna Reef-->"C:\Program Files\Acer GameZone\Big Kahuna Reef\Uninstall.exe" "C:\Program Files\Acer GameZone\Big Kahuna Reef\install.log"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Bookworm Deluxe-->"C:\Program Files\Acer GameZone\Bookworm Deluxe\Uninstall.exe" "C:\Program Files\Acer GameZone\Bookworm Deluxe\install.log"
Bricks of Egypt-->"C:\Program Files\Acer GameZone\Bricks of Egypt\Uninstall.exe" "C:\Program Files\Acer GameZone\Bricks of Egypt\install.log"
Browser Defender 2.0.6.15-->"C:\Program Files\Spyware Doctor\BDT\unins000.exe"
BS.Player FREE-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
Burnout(TM) Paradise The Ultimate Box-->MsiExec.exe /X{9A996B6A-846E-4A89-B9C4-17546B7BE49F}
Cake Mania-->"C:\Program Files\Acer GameZone\Cake Mania\Uninstall.exe" "C:\Program Files\Acer GameZone\Cake Mania\install.log"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\SETUP.EXE" -l0x9 UNINST
CashGopher-->MsiExec.exe /I{F46AA5A6-F88A-4706-B588-755B66F2F650}
Catalyst Control Center - Branding-->MsiExec.exe /I{802F0F4E-A0A5-4E4D-9D7B-1933913EF7B6}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Counter-Strike 1.6-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}\Setup.exe" -l0x19
Creation Master 10 Release 10.1-->"C:\Program Files\Fifa Master\Creation Master 10\unins000.exe"
CX4300_5500_DX4400 Manuál-->C:\Program Files\EPSON\TPMANUAL\CX4300_5500_DX4400\CZE\USE_G\DOCUNINS.EXE
Czech Soccer Manager 2002 Final Edition-->"C:\Program Files\Czech Soccer Manager 2002 FE\uninstall.exe" "/U:C:\Program Files\Czech Soccer Manager 2002 FE\uninstall.xml"
Decal Converter-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5BB207D6-0E1E-11D5-9B6A-00C04F7EC248}\Setup.exe"
Diner Dash Flo on the Go-->"C:\Program Files\Acer GameZone\Diner Dash Flo on the Go\Uninstall.exe" "C:\Program Files\Acer GameZone\Diner Dash Flo on the Go\install.log"
DivX Setup-->C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
DVD Flick-->"C:\Program Files\DVD Flick\unins000.exe"
EA Download Manager-->C:\Program Files\Electronic Arts\EADM\EADMUI\EADMUninstall.exe
Emma Core-->MsiExec.exe /I{34BDF3BF-AA61-42E7-8818-C16A304910FC}
EPSON Attach To Email-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x9 -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\SETUP.EXE" -l0x9 UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\Setup.exe" -l0x9 UNINST
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x9 -u
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
ESET Online Scanner v3-->C:\Program Files\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
eSobi v2-->C:\Program Files\InstallShield Installation Information\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\setup.exe -runfromtemp -l0x0409
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
EVEREST Ultimate Edition v5.50-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Family Keylogger v3.02 (remove only)-->"D:\FIFA08\FK\svcl32\uninstall.exe"
FIFA 08-->MsiExec.exe /X{0A2A5039-B37F-489D-B1DC-A5258DF9E697}
FIFA 11-->MsiExec.exe /X{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}
FlashFXP v3-->"C:\Program Files\FlashFXP\Uninstall.exe" "C:\Program Files\FlashFXP\install.log" -u
Flip Words 2-->"C:\Program Files\Acer GameZone\Flip Words 2\Uninstall.exe" "C:\Program Files\Acer GameZone\Flip Words 2\install.log"
Free YouTube Download 2.9-->"C:\Program Files\DVDVideoSoft\Free YouTube Download\unins000.exe"
Game Booster-->"C:\Program Files\IObit\Game Booster\unins000.exe"
Garena-->C:\Program Files\Garena\uninst.exe
Get Styles-->C:\Program Files\Get Styles\uninstall.exe
Google Earth-->MsiExec.exe /X{4286E640-B5FB-11DF-AC4B-005056C00008}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Grand Theft Auto IV-->"C:\Program Files\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x0009 -removeonly
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000028701}
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000028702}
Half-Life Dedicated Server Update Tool-->C:\STEAMH~1\UNWISE.EXE C:\STEAMH~1\INSTALL.LOG
Hamachi 1.0.3.0-->C:\Program Files\Hamachi\uninstall.exe
Harry Potter TM-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F50AF3B-8997-4916-0095-99D63DDB785A}\setup.exe" -l0x9 Uninstall
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDA_HSF\UIU32m.exe -U -IAcrZUn32z.INF
Hide IP Platinum 4.02 Beta-->"C:\Program Files\Hide IP Platinum\unins000.exe"
Hotfix for Microsoft .NET Framework 3.5 (KB2418240)-->C:\Windows\system32\msiexec.exe /package {2FC099BD-AC9B-33EB-809C-D332E1B27C40} /uninstall {EDB0BEF6-05FB-4FFB-893C-576E7B5A3319} /qb+ REBOOTPROMPT=""
Chicken Invaders 3-->"C:\Program Files\Acer GameZone\Chicken Invaders 3\Uninstall.exe" "C:\Program Files\Acer GameZone\Chicken Invaders 3\install.log"
ICQ6.5-->"C:\Program Files\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly
iTunes-->MsiExec.exe /I{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Jewel Quest Solitaire-->"C:\Program Files\Acer GameZone\Jewel Quest Solitaire\Uninstall.exe" "C:\Program Files\Acer GameZone\Jewel Quest Solitaire\install.log"
JMicron JMB38X Flash Media Controller-->"C:\Program Files\InstallShield Installation Information\{26604C7E-A313-4D12-867F-7C6E7820BE4C}\setup.exe" delpkg
Kick N Rush-->"C:\Program Files\Acer GameZone\Kick N Rush\Uninstall.exe" "C:\Program Files\Acer GameZone\Kick N Rush\install.log"
Launch Manager-->C:\Windows\UnInst32.exe LManager.UNI
Lauyan TOWeb V3-->"C:\Program Files\Lauyan\TOWeb V3\unins000.exe"
Left 4 Dead 2 Custom Tools™-->D:\Left 4 Dead 2\left 4 dead 2\Uninstall ADD.exe
Left 4 Dead 2 Standalone Patch™-->D:\Left 4 Dead 2\left 4 dead 2\Uninstall.exe
Left 4 Dead 2-->MsiExec.exe /I{C0C85A83-296E-4813-86A6-DA8DA6A92D6D}
LogMeIn Hamachi-->C:\Windows\system32\\msiexec.exe /i {8A74DEFD-A224-49CC-AB80-4E88BC730125} REMOVE=ALL
Mahjong Escape Ancient China-->"C:\Program Files\Acer GameZone\Mahjong Escape Ancient China\Uninstall.exe" "C:\Program Files\Acer GameZone\Mahjong Escape Ancient China\install.log"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
ManyCam 2.4 (remove only)-->"C:\Program Files\ManyCam 2.4\uninstall.exe"
McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe"
Media Go-->MsiExec.exe /X{FBE5AA96-22F0-4C4A-8E92-4BE3498D4CCB}
Mega Manager-->C:\Program Files\InstallShield Installation Information\{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}\setup.exe -runfromtemp -l0x0009 -removeonly
Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe
Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{A1C962E2-2426-49C6-A38B-9A07E40D607C}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011041B-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Works-->MsiExec.exe /I{BEC7BDC8-7A83-4312-9340-1ECDF06C1434}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
Mirror's Edge™-->MsiExec.exe /X{AEDBD563-24BB-4EE3-8366-A654DAC2D988}
Mozilla Firefox (3.6.11)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mp3 Knife 3.2-->"C:\Program Files\Mp3 Knife\unins000.exe"
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
myRuler 0.5-->"C:\Program Files\myRuler\unins000.exe"
Mystery Case Files - Huntsville-->"C:\Program Files\Acer GameZone\Mystery Case Files - Huntsville\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Case Files - Huntsville\install.log"
Mystery Solitaire - Secret Island-->"C:\Program Files\Acer GameZone\Mystery Solitaire - Secret Island\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Solitaire - Secret Island\install.log"
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NHL® 09-->MsiExec.exe /X{F2B5A2A7-2DF9-4361-8BD5-362714528B51}
NTI Backup Now 5-->C:\Program Files\InstallShield Installation Information\{12EFA1A4-AC3B-443C-8143-237EDE760403}\setup.exe -runfromtemp -l0x041b
NTI Media Maker 8-->C:\Program Files\InstallShield Installation Information\{2413930C-8309-47A6-BC61-5EF27A4222BC}\setup.exe -runfromtemp -l0x041b
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
Opera 10.10-->MsiExec.exe /X{FB8148DD-C575-4B0A-9F6C-0CFC46937930}
Opera 10.63-->MsiExec.exe /X{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}
Orion-->MsiExec.exe /X{5B63A470-9334-44D1-AF61-6CE2DB565AE9}
PDF Settings-->MsiExec.exe /I{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PhotoNow!-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" -uninstall
PlayStation(R)Network Downloader-->MsiExec.exe /X{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}
PlayStation(R)Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
PokerStars.net-->"C:\Program Files\PokerStars.NET\PokerStarsUninstall.exe" /u:PokerStars.net
PowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
Pro Evolution Soccer 2010-->MsiExec.exe /X{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}
Pro Evolution Soccer 2011-->MsiExec.exe /X{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}
PSPad editor-->"C:\Program Files\PSPad editor\Uninst\unins000.exe"
PunkBuster Services-->C:\Windows\system32\pbsvc.exe -u
QuickTime-->MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709
Reflex-->C:\Windows\UnGins.exe "C:\Program Files\Reflex\install.log"
RegCure-->C:\Program Files\RegCure\uninst.exe
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Ruske / Ukrajinske foneticke klavesnice pro WIN 2000/XP 1.3-->"C:\Windows\unins000.exe"
Safari-->MsiExec.exe /I{EAFEF30E-3789-49C7-A6D9-77C12E005BAC}
SEMC OMSI Module-->C:\Program Files\Sony Ericsson\SEMC OMSI Module\uninst.exe
Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A}
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Software tiskárny EPSON-->C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
Sony Ericsson PC Companion 1.50.52-->"C:\Program Files\InstallShield Installation Information\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\setup.exe" -runfromtemp -l0x0009 -removeonly
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Spyware Doctor 7.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Surfbar-->"C:\Program Files\Surfbar\unins000.exe"
SweetIM Toolbar for Internet Explorer 3.3-->MsiExec.exe /X{266C7330-C0F4-49E5-8F20-A56F9F822875}
System Requirements Lab-->MsiExec.exe /I{9E1BAB75-EB78-440D-94C0-A3857BE2E733}
TalkAndWrite-->"C:\Program Files\TalkAndWrite\TalkAndWrite\unins000.exe"
TeamViewer 5-->C:\Program Files\TeamViewer\Version4\uninstall.exe
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Turbo Pizza-->"C:\Program Files\Acer GameZone\Turbo Pizza\Uninstall.exe" "C:\Program Files\Acer GameZone\Turbo Pizza\install.log"
Uninstall 1.0.0.1-->"C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Vista Manager-->MsiExec.exe /I{5977A284-6ADB-4CC1-BEC5-1CDE7908ACA3}
Voobys-->MsiExec.exe /I{B72257D6-189D-4CB0-9CDC-26A93536C34B}
WIDCOMM Bluetooth Software 6.0.1.6400-->MsiExec.exe /X{03D1988F-469F-4843-8E6E-E5FE9D17889D}
Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\enecir.inf_8f2fc366\enecir.inf
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Xara3D6-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{64C96428-3A75-4AAE-A538-C450EF68175F}\setup.exe" -l0x9
Yontoo Layers Client 1.10.01-->C:\PROGRA~2\TARMAI~1\{889DF~1\Setup.exe /remove /q0
Zuma Deluxe-->"C:\Program Files\Acer GameZone\Zuma Deluxe\Uninstall.exe" "C:\Program Files\Acer GameZone\Zuma Deluxe\install.log"

======Security center information======

AS: Windows Defender

=====Application event log=====

Computer Name: Acer-PC
Event Code: 4354
Message: The COM+ Event System failed to fire the ConnectionMadeNoQOCInfo method on subscription {B7D5797D-4B39-43BD-90EB-5A1C36C0411E}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. The subscriber returned HRESULT 80040210.
Record Number: 41967
Source Name: Microsoft-Windows-EventSystem
Time Written: 20091007144311.000000-000
Event Type: Warning
User:

Computer Name: Acer-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 41962
Source Name: Microsoft-Windows-WMI
Time Written: 20091007144256.000000-000
Event Type: Error
User:

Computer Name: Acer-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 41928
Source Name: Microsoft-Windows-WMI
Time Written: 20091007131125.000000-000
Event Type: Error
User:

Computer Name: Acer-PC
Event Code: 4354
Message: The COM+ Event System failed to fire the ConnectionMadeNoQOCInfo method on subscription {B7D5797D-4B39-43BD-90EB-5A1C36C0411E}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. The subscriber returned HRESULT 80040210.
Record Number: 41870
Source Name: Microsoft-Windows-EventSystem
Time Written: 20091007131046.000000-000
Event Type: Warning
User:

Computer Name: Acer-PC
Event Code: 1000
Message: Chybová aplikácia PLFSetI.exe, verzia 1.0.1.0, časová značka 0x471d62d0, chybový modul PLFSetI.exe, verzia 1.0.1.0, časová značka 0x471d62d0, kód výnimky 0xc0000005, odstup chyby 0x00001afe, identifikácia procesu 0x88c, čas spustenia aplikácie 0x01ca474f909fe988.
Record Number: 41869
Source Name: Application Error
Time Written: 20091007131042.000000-000
Event Type: Error
User:

=====Security event log=====

Computer Name: Acer-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: ACER-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-19
Account Name: LOCAL SERVICE
Account Domain: NT AUTHORITY
Logon ID: 0x3e5
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 75354
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100127150025.057072-000
Event Type: Audit Success
User:

Computer Name: Acer-PC
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 75353
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100127150024.511069-000
Event Type: Audit Success
User:

Computer Name: Acer-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: ACER-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 75352
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100127150024.511069-000
Event Type: Audit Success
User:

Computer Name: Acer-PC
Event Code: 4648
Message: A logon was attempted using explicit credentials.

Subject:
Security ID: S-1-5-18
Account Name: ACER-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Account Whose Credentials Were Used:
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon GUID: {00000000-0000-0000-0000-000000000000}

Target Server:
Target Server Name: localhost
Additional Information: localhost

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Network Address: -
Port: -

This event is generated when a process attempts to log on an account by explicitly specifying that account’s credentials. This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the RUNAS command.
Record Number: 75351
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100127150024.511069-000
Event Type: Audit Success
User:

Computer Name: Acer-PC
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-20
Account Name: NETWORK SERVICE
Account Domain: NT AUTHORITY
Logon ID: 0x3e4

Privileges: SeAssignPrimaryTokenPrivilege
SeAuditPrivilege
SeImpersonatePrivilege
Record Number: 75350
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100127150024.261467-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=c:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Acer\Empowering Technology\eDataSecurity;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Teleca Shared;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Smart Projects\IsoBuster;C:\Windows;C:\Windows\system32;C:\Windows\system32\Wbem
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=17
"PROCESSOR_IDENTIFIER"=x86 Family 17 Model 3 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=0301
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"Pathtem"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Acer\Empowering Technology\eDataSecurity\;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64
"NTIPath"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Acer\Empowering Technology\eDataSecurity\;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86;C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\;
"RGSCLauncher"=C:\Program Files\Rockstar Games\Rockstar Games Social Club
"RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

Tohle Family Keylogger v3.02 (remove only)-->"D:\FIFA08\FK tam mate umyslne

Spyware Doctor odinstalujte, jelikoz je placeny a pokud nevite ze jste na nej kupoval licenci, tak ta licence ma asi pochybnou minulost (ze by crack)

Jsou s PC nejake problemy

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Vložte do PC vsechny USB klice (flash disky, ext.disky apod.)
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Snažil som sa urobiť ten log z Combofixu , no ked už sa vytvaral pisalo mi to že mam počkať par sekund kym sa log vytvori .. no čakal som asi 30 min a stale nič , tak som to zrušil .

Podivejte se, ci neni i presto vytvoren v C:\Combofix.txt, pokud ne, tak postupujte dle pokynu nize

Zkuste aplikovat CF v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)

Tak našiel som tam v C:/Combofix/Combifix.txt toto ....

ComboFix 10-10-29.02 - Acer . 10. 2010 9:54:13.4.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.421.1051.18.2525.1536 [GMT 2:00]
Running from: C:\Users\Acer\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Resident AV is active

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Users\Acer\AppData\Roaming\.#
C:\Users\Acer\AppData\Roaming\.#\MBX@108C@3A2990.###
C:\Users\Acer\AppData\Roaming\.#\MBX@108C@3A29C0.###
C:\Users\Acer\AppData\Roaming\.#\MBX@108C@3A29F0.###
C:\Users\BaYa\AppData\Roaming\.#
C:\Users\Zuzka\AppData\Roaming\.#
C:\Windows\system32\detoured.dll

.
((((((((((((((((((((((((( Files Created from 2010-09-28 to 2010-10-30 )))))))))))))))))))))))))))))))
.

2010-10-30 08:14:23 . 2010-10-30 08:14:23 -------- d-----w- C:\Users\Zuzka\AppData\Local\temp
2010-10-30 08:14:23 . 2010-10-30 08:14:23 -------- d-----w- C:\Users\Public\AppData\Local\temp
2010-10-30 08:14:23 . 2010-10-30 08:14:23 -------- d-----w- C:\Users\Default\AppData\Local\temp
2010-10-30 08:14:22 . 2010-10-30 08:14:22 -------- d-----w- C:\Users\TEMP\AppData\Local\temp
2010-10-30 08:14:22 . 2010-10-30 08:14:22 -------- d-----w- C:\Users\Guest\AppData\Local\temp
2010-10-30 08:14:22 . 2010-10-30 08:14:22 -------- d-----w- C:\Users\BaYa\AppData\Local\temp
2010-10-29 09:36:12 . 2010-10-07 23:21:31 6146896 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AE9BA2E7-F2B7-4182-B8E7-A3E5C53CD6F2}\mpengine.dll
2010-10-28 17:09:32 . 2010-10-28 17:09:32 -------- d-----w- C:\Users\Acer\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2010-10-28 17:02:26 . 2010-10-28 17:23:49 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2010-10-28 16:58:09 . 2010-10-28 16:58:09 -------- d-----w- C:\Program Files\Adobe Media Player
2010-10-28 16:56:58 . 2010-10-28 16:56:58 -------- d-----w- C:\Program Files\Common Files\Adobe AIR
2010-10-28 16:43:50 . 2010-10-28 16:44:32 -------- d-----w- C:\rsit
2010-10-28 07:01:25 . 2010-10-28 07:02:19 -------- d-----w- C:\Users\Administrator
2010-10-27 12:51:39 . 2010-08-26 16:34:50 1696256 ----a-w- C:\Windows\system32\gameux.dll
2010-10-27 12:51:37 . 2010-08-26 16:33:12 28672 ----a-w- C:\Windows\system32\Apphlpdm.dll
2010-10-27 12:51:37 . 2010-08-26 14:23:58 4240384 ----a-w- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-10-24 18:50:27 . 2010-10-24 18:50:36 -------- d-----w- C:\Users\Acer\AppData\Roaming\GameRanger
2010-10-22 19:03:26 . 2010-10-22 19:04:04 -------- d-----w- C:\Program Files\Lauyan
2010-10-22 19:03:26 . 2010-10-22 19:03:26 -------- d-----w- C:\ProgramData\Lauyan
2010-10-21 19:19:51 . 2010-10-21 19:19:51 -------- d-----w- C:\ProgramData\McAfee Security Scan
2010-10-21 19:19:42 . 2010-10-22 11:30:58 -------- d-----w- C:\Program Files\McAfee Security Scan
2010-10-21 19:17:34 . 2010-10-29 15:30:14 25048 ----a-w- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
2010-10-21 19:17:34 . 2010-10-29 15:30:14 140248 ----a-w- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
2010-10-20 18:53:59 . 2010-10-20 18:54:00 -------- d-----w- C:\Program Files\myRuler
2010-10-20 15:02:39 . 2010-10-20 15:02:39 -------- d-----w- C:\Users\Default\AppData\Roaming\DivX
2010-10-20 14:46:41 . 2010-10-20 15:09:40 -------- d-----w- C:\Program Files\PhotoFiltre
2010-10-16 18:26:17 . 2010-10-16 18:36:58 -------- d-----w- C:\Users\Acer\AppData\Roaming\PSpad
2010-10-16 18:25:39 . 2010-10-16 18:26:13 -------- d-----w- C:\Program Files\PSPad editor
2010-10-15 20:13:11 . 2010-10-15 20:13:11 -------- d-----w- C:\Users\Acer\AppData\Local\Electronic Arts
2010-10-15 17:38:46 . 2010-10-20 12:45:59 -------- d-----w- C:\Users\Acer\AppData\Roaming\CashGopher
2010-10-13 17:04:45 . 2010-09-13 13:56:02 168960 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2010-10-13 17:04:44 . 2010-09-13 13:56:41 8147456 ----a-w- C:\Windows\system32\wmploc.DLL
2010-10-13 17:04:25 . 2010-06-28 17:00:21 1316864 ----a-w- C:\Windows\system32\ole32.dll
2010-10-13 17:04:24 . 2010-06-28 14:54:38 339968 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe
2010-10-13 17:04:20 . 2010-08-31 13:27:38 2038272 ----a-w- C:\Windows\system32\win32k.sys
2010-10-13 17:04:10 . 2010-09-06 16:20:29 125952 ----a-w- C:\Windows\system32\srvsvc.dll
2010-10-13 17:04:10 . 2010-09-06 13:45:19 102400 ----a-w- C:\Windows\system32\drivers\srvnet.sys
2010-10-13 17:04:09 . 2010-09-06 13:45:38 304128 ----a-w- C:\Windows\system32\drivers\srv.sys
2010-10-13 17:04:09 . 2010-09-06 13:45:22 145408 ----a-w- C:\Windows\system32\drivers\srv2.sys
2010-10-13 17:04:08 . 2010-09-06 16:19:06 17920 ----a-w- C:\Windows\system32\netevent.dll
2010-10-13 17:03:55 . 2010-08-26 16:37:45 157184 ----a-w- C:\Windows\system32\t2embed.dll
2010-10-13 17:03:51 . 2010-05-04 19:13:07 231424 ----a-w- C:\Windows\system32\msshsq.dll
2010-10-13 17:02:48 . 2010-08-20 16:05:07 867328 ----a-w- C:\Windows\system32\wmpmde.dll
2010-10-13 17:01:35 . 2010-08-10 15:53:15 274944 ----a-w- C:\Windows\system32\schannel.dll
2010-10-13 17:00:36 . 2010-08-31 15:44:31 531968 ----a-w- C:\Windows\system32\comctl32.dll
2010-10-13 16:59:57 . 2010-08-31 15:46:37 954752 ----a-w- C:\Windows\system32\mfc40.dll
2010-10-13 16:59:56 . 2010-08-31 15:46:37 954288 ----a-w- C:\Windows\system32\mfc40u.dll
2010-10-10 17:21:49 . 2010-10-10 17:21:50 -------- d-----w- C:\Program Files\Surfbar
2010-10-09 16:32:32 . 2004-08-05 11:00:00 59904 ----a-w- C:\Windows\system32\wbemdisp.tlb
2010-10-09 16:32:31 . 2010-10-09 16:32:33 -------- d-----w- C:\Program Files\20Dollars2Surf
2010-10-09 15:38:52 . 2010-10-23 10:29:54 -------- d-----w- C:\Users\Acer\AppData\Local\PokerStars.NET
2010-10-09 15:37:58 . 2010-10-15 17:55:27 -------- d-----w- C:\Program Files\PokerStars.NET
2010-10-08 17:30:50 . 2010-10-08 17:30:50 -------- d-----w- C:\Users\Acer\AppData\Local\Unity
2010-10-08 17:13:35 . 2010-10-08 17:13:35 -------- d-----w- C:\Users\Acer\AppData\Roaming\Electronic Arts
2010-10-05 13:50:51 . 2004-04-12 15:27:08 152848 ----a-w- C:\Windows\system32\comdlg32.ocx
2010-10-05 13:50:50 . 2010-10-05 13:51:08 -------- d-----w- C:\Program Files\Mp3 Knife
2010-10-01 15:01:12 . 2010-10-01 15:01:12 -------- d-----w- C:\Users\Acer\AppData\Roaming\Mass eMailer
2010-10-01 15:01:01 . 2010-10-01 15:01:01 -------- d-----w- C:\Windows\Mass eMailer

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 09:41:44 . 2009-10-03 09:51:25 222080 ------w- C:\Windows\system32\MpSigStub.exe
2010-10-15 20:04:31 . 2010-01-03 18:38:36 4630 ----a-w- C:\Windows\system32\ealregsnapshot1.reg
2010-09-01 13:51:47 . 2010-06-09 10:13:43 215128 ----a-w- C:\Windows\system32\PnkBstrB.xtr
2010-09-01 13:49:24 . 2009-07-02 07:56:07 138384 ----a-w- C:\Windows\system32\drivers\PnkBstrK.sys
2010-09-01 13:46:30 . 2009-07-02 07:55:48 215128 ----a-w- C:\Windows\system32\PnkBstrB.exe
2010-08-26 16:33:06 . 2010-10-27 12:51:37 173056 ----a-w- C:\Windows\apppatch\AcXtrnal.dll
2010-08-26 16:33:04 . 2010-10-27 12:51:38 458752 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2010-08-26 16:33:04 . 2010-10-27 12:51:38 2159616 ----a-w- C:\Windows\apppatch\AcGenral.dll
2010-08-26 16:33:04 . 2010-10-27 12:51:37 542720 ----a-w- C:\Windows\apppatch\AcLayers.dll
2010-08-17 14:11:37 . 2010-09-15 08:40:32 128000 ----a-w- C:\Windows\system32\spoolsv.exe
2010-08-07 10:03:33 . 2010-08-07 10:03:33 25280 ----a-w- C:\Windows\system32\drivers\hamachi.sys
. ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2AAE80CE-5D5E-4AD2-B722-E9E0A506CE52}]
2010-10-04 13:58:42 36352 ----a-w- C:\Users\Acer\AppData\Roaming\CashGopher\CashGopherBHO.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3CF7606-E683-4375-A372-96B75DA0AEF7}]
2010-02-11 07:58:56 185856 ----a-w- C:\Program Files\Get Styles\enlbrdr.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-04 21:38:12 121392 ----a-w- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-01-21 02:23:32 1008184]
"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe" [2009-09-11 06:23:46 2054360]
"RtHDVCpl"="RtHDVCpl.exe" [2008-04-28 07:35:36 6111232]
"Malwarebytes Anti-Malware (reboot)"="C:\Program Files\Malwarebytes' Anti-Malware\mbam .exe" [2009-09-10 13:53:56 1312080]
"Surfbar"="C:\Program Files\Surfbar\Surfbar.exe" [2010-10-07 18:55:58 1105408]
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 16:18:20 500208]
"AdobeCS5ServiceManager"="C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 20:10:47 402432]
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [2010-10-29 19:51:51 1287120]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
20Dollars2Surf.lnk - C:\Program Files\20Dollars2Surf\20dollars2surf.exe [2010-10-9 89088]
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-4-23 727592]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FDCENT.SYS]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HideFilesAndFolders_S]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^Users^Acer^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Voobys.lnk]
path=C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voobys.lnk
backup=C:\Windows\pss\Voobys.lnk.Startup
backupExtension=.Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhilipsDM

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-09-21 14:36:12 305440 ----a-w- C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhilipsDM\SA1916]
2008-05-11 08:41:06 47616 ------r- C:\Program Files\Philips\SA19xx\Philips Device Manager\bin\LaunchDM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2010-04-12 08:40:16 180224 ----a-w- C:\Program Files\PowerISO\PWRISOVM.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 11:16:28 130384]
R2 gupdate1c9906be3877692;Služba Google Update (gupdate1c9906be3877692);C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-16 19:22:02 133104]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 19:36:02 131072]
R2 OMSI download service;Sony Ericsson OMSI download service;C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 09:23:26 90112]
R3 GarenaPEngine;GarenaPEngine;C:\Users\Acer\AppData\Local\Temp\VWIDAAA.tmp [x]
R3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys [2008-05-30 11:17:54 93968]
R3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 12:49:20 227232]
R3 PSPRSERV;PSPR Control Service;C:\Program Files\ElcomSoft\Proactive System Password Recovery\psprserv.exe [2009-05-19 12:51:34 69632]
S0 PCTCore;PCTools KDS;C:\Windows\system32\drivers\PCTCore.sys [2010-03-29 08:06:14 218592]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys [2009-09-11 06:23:50 108792]
S1 FDCENT;FDCENT;C:\Windows\system32\drivers\FDCENT.SYS [2007-01-27 18:28:04 47854]
S2 Browser Defender Update Service;Browser Defender Update Service;C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe [2010-01-22 07:56:24 112592]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 11:11:14 16384]
S2 CLHNService;CLHNService;C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2009-04-16 15:56:36 75048]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-09-11 06:24:32 735960]
S2 EmmaDevMgmtSvc;Emma Device Management;C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaDeviceMgmt.exe [2010-04-27 12:51:00 306296]
S2 EmmaUpdMgmtSvc;Emma Update Management;C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaUpdateMgmt.exe [2010-04-27 12:51:00 162936]
S2 epfwwfp;epfwwfp;C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-09-11 06:26:26 38240]
S2 ETService;Empowering Technology Service;C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-03-21 11:22:52 24576]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 09:16:12 1107336]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 19:36:20 45056]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-03-27 20:44:56 210432]
S3 enecir;ENE CIR Receiver;C:\Windows\system32\DRIVERS\enecir.sys [2008-04-28 17:54:58 54784]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\Windows\system32\DRIVERS\ManyCam.sys [2008-01-14 10:06:32 21632]


--- Other Services/Drivers In Memory ---

*Deregistered* - PCTSDInjDriver32

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder

2010-10-30 C:\Windows\Tasks\1-Click Maintenance.job
- C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36:18 . 2008-12-11 19:36:18]

2010-10-30 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-16 19:22:18 . 2009-02-16 19:22:02]

2010-10-30 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-16 19:22:18 . 2009-02-16 19:22:02]

2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000Core.job
- C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [2009-06-26 17:59:13 . 2009-06-26 17:59:10]

2010-10-30 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000UA.job
- C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [2009-06-26 17:59:13 . 2009-06-26 17:59:10]

2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001Core.job
- C:\Users\BaYa\AppData\Local\Google\Update\GoogleUpdate.exe [2008-12-27 11:04:06 . 2008-12-27 11:04:06]

2010-10-30 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001UA.job
- C:\Users\BaYa\AppData\Local\Google\Update\GoogleUpdate.exe [2008-12-27 11:04:06 . 2008-12-27 11:04:06]

2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002Core.job
- C:\Users\Zuzka\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-21 14:23:40 . 2009-07-21 14:23:34]

2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002UA.job
- C:\Users\Zuzka\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-21 14:23:40 . 2009-07-21 14:23:34]

2010-10-29 C:\Windows\Tasks\RegCure Program Check.job
- C:\Program Files\RegCure\RegCure.exe [2010-05-19 23:20:44 . 2010-05-19 23:20:44]

2010-07-26 C:\Windows\Tasks\RegCure.job
- C:\Program Files\RegCure\RegCure.exe [2010-05-19 23:20:44 . 2010-05-19 23:20:44]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.mywebsearch.com/mywebsearch/default.jhtml?ptnrS=ZJman000&ptb=n5n8wHhLry0R8Gq7_UZVOA
mStart Page = hxxp://home.sweetim.com
uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
uInternet Settings,ProxyServer = socks=
IE: Free YouTube Download - C:\Users\Acer\AppData\Roaming\DVDVideoSoftIEHelpers\youtubedownload.htm
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Get Styles\ct.htm
IE: {{FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
LSP: C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll
FF - ProfilePath - C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\9y8ivsrd.default\
FF - prefs.js: browser.startup.homepage - google.sk
FF - prefs.js: network.proxy.type - 0
FF - component: C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\9y8ivsrd.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\components\FFExternalAlert.dll
FF - component: C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\9y8ivsrd.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\components\RadioWMPCore.dll
FF - plugin: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\Program Files\Sony\Media Go\npmediago.dll
FF - plugin: C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
FF - plugin: C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
FF - plugin: C:\Users\Acer\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Users\Acer\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Users\Acer\AppData\Roaming\Electronic Arts\Game Face\1.0.0.18\npGameFacePlugin.dll

---- FIREFOX POLICIES ----
FF - user.js: network.proxy.type - 0
FF - user.js: network.proxy.http -
FF - user.js: network.proxy.http_port - 0
FF - user.js: network.proxy.ssl -
FF - user.js: network.proxy.ssl_port - 0
FF - user.js: network.proxy.ftp -
FF - user.js: network.proxy.ftp_port - 0
FF - user.js: network.proxy.gopher -
FF - user.js: network.proxy.gopher_port - 0
FF - user.js: network.proxy.socks_version - 5
FF - user.js: network.proxy.socks -
FF - user.js: network.proxy.socks_port - 0
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS REMOVED - - - -

Toolbar-{9565115d-c7d6-46d3-bd63-b67b481a4368} - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{A057A204-BACC-4D26-C39E-35F1D2A32EC8} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
WebBrowser-{9565115D-C7D6-46D3-BD63-B67B481A4368} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-Color Cop_is1 - C:\Program Files\ColorCop\unins000.exe

Nalogujte se do nouzoveho rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)

Prejmenujte ComboFix na Beruska.com

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  RenV::
  C:\Program Files\Acer\Empowering Technology\eAudio\eAudio .exe
  C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader .exe
  C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC .exe
  C:\Program Files\Acer\WR_PopUp\WarReg_PopUp .exe
  C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent .exe
  C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc .exe
  C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService .exe
  C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl .exe
  C:\Program Files\Apoint2K\Apoint .exe
  C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart .exe
  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM .exe
  C:\Program Files\Common Files\Java\Java Update\jusched .exe
  C:\Program Files\Launch Manager\LManager .exe
  C:\Program Files\Malwarebytes' Anti-Malware\mbam .exe
  C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray .exe
  C:\Program Files\QuickTime\QTTask .exe
  C:\Program Files\Windows Media Player\wmupdater .exe
  C:\Windows\PLFSetI .exe
  C:\Windows\hffext\hffsrv .exe
  
  Registry::
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "AdobeAAMUpdater-1.0"=-
  "AdobeCS5ServiceManager"=-
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
  [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
  "DisableMonitoring"=dword:00000000
  
  Driver::
  PCTSDInjDriver32
  
  File::
  C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000Core.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000UA.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001Core.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001UA.job
  2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002Core.job
  2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002UA.job
  
  DDS::
  uStart Page = hxxp://search.mywebsearch.com/mywebsear ... 8Gq7_UZVOA
  mStart Page = hxxp://home.sweetim.com

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Tak spustil som nudzovy režim , všetko som urobil podla navodu , reštartoval sa PC , ked som sa prihlasil naskočilo mi okno combofix , že finished , ale zase som čakal as 35 min a stale nič , tak som to vypol ... ale na C: sa mi vytvorili 3 priečinky :

Beruska.com
Beruska.com17199B
Beruska.com32144B

Zabalte mi prosim ty slozky do raru a poslete na vyosek@forum.viry.cz

a nemožem to upnuť na nejaky server , že by ste si to stiahli ? lebo na tých e-mailových schránkach sa tie prilohy strašne pomaly načitavaju ...


tu je to : http://www.uloz.to/6392197/beruska-rar

Stahnete OTM (viz muj podpis)

• Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
• Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

• Kód: Vybrat vše

  :reg
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "AdobeAAMUpdater-1.0"=-
  "AdobeCS5ServiceManager"=-
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
  [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
  "DisableMonitoring"=dword:00000000
  
  :services
  PCTSDInjDriver32
  
  :files
  C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000Core.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000UA.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001Core.job
  C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001UA.job
  2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002Core.job
  2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002UA.job
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp /s
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]

• Kliknete na cervene tlacitko MoveIt!
• Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

reštartoval som a na ploche mi vytvorilo rôzne obrazky napr. Jasona Mraza alebo Shreka a ešte nejaké desktop.ini ... mám ich vymazať ?

+ log


All processes killed
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5ServiceManager not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent\ not found.
HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware\\"DisableMonitoring"|dword:00000000 /E : value set successfully!
========== SERVICES/DRIVERS ==========
Error: No service named PCTSDInjDriver32 was found to stop!
Service\Driver key PCTSDInjDriver32 not found.
========== FILES ==========
File/Folder C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
File/Folder C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
File/Folder C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000Core.job not found.
File/Folder C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1000UA.job not found.
File/Folder C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001Core.job not found.
File/Folder C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1001UA.job not found.
File/Folder 2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002Core.job not found.
File/Folder 2010-10-29 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-535194301-2542288228-1683754161-1002UA.job not found.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\S4889BAA4.tmp moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2DF2.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP389D.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5A8D.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5C42.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP762B.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP81A.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8F6.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9359.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD6DE.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE752.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEEF0.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFA17.tmp folder moved successfully.
C:\Windows\Installer\MSI22DC.tmp moved successfully.
C:\Windows\Installer\MSI2AA1.tmp moved successfully.
C:\Windows\Installer\MSI2B29.tmp moved successfully.
C:\Windows\Installer\MSI4F60.tmp moved successfully.
C:\Windows\Installer\MSI7F85.tmp moved successfully.
C:\Windows\Installer\MSI87FE.tmp moved successfully.
C:\Windows\Installer\MSI994D.tmp moved successfully.
C:\Windows\Installer\MSI9EE9.tmp moved successfully.
C:\Windows\Installer\MSI9FAB.tmp moved successfully.
C:\Windows\Installer\MSIA5BD.tmp moved successfully.
C:\Windows\Installer\MSIA7ED.tmp moved successfully.
C:\Windows\Installer\MSIB398.tmp moved successfully.
C:\Windows\Installer\MSIEB24.tmp moved successfully.
C:\Windows\Installer\MSIED40.tmp moved successfully.
C:\Windows\SoftwareDistribution_old\Download\dbfb51861a3603ba6a8b6340c5ab0f54\inst\$dpx$.tmp folder moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004Q.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004R.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004U.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004X.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0004Z.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00050.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00052.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00053.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00054.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00055.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00056.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00057.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00058.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00059.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005A.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005B.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005C.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005D.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005E.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005F.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005H.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005I.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005J.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005L.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005M.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005O.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005P.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005Q.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005V.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0005Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00060.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00062.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00063.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00064.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00065.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00066.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00067.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00068.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006A.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006B.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006C.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006D.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006E.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006F.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006G.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006J.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006K.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006L.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006M.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006N.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006O.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006P.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006R.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006T.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006U.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006V.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006X.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr0006Z.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00070.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00071.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00072.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0001\opr00073.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00074.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00075.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00076.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00077.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00078.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00079.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007A.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007B.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007C.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007D.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007E.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007F.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007G.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007H.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007I.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007J.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007K.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007L.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007M.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007N.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007O.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007P.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007Q.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007R.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007T.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007U.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007V.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007X.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0007Z.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00081.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00082.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00083.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00084.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00085.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00086.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00087.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00088.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00089.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008A.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008B.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008C.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008D.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008E.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008F.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008G.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008H.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008I.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008J.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008K.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008L.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008M.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008N.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008O.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008P.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008Q.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008R.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008T.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008U.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008V.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0008Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00090.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00092.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00093.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00094.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00095.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00096.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr00097.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009A.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009B.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009C.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009D.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009E.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009I.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009K.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009O.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009P.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009Q.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009R.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009S.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009U.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009V.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009W.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009X.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr0009Y.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000A9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0002\opr000AN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000AZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000B8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000BZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000C9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000CZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000D9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000DZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0003\opr000E7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000E8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000E9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000ED.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000ER.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000ET.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000EZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000F9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000FZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G5.tmp moved successfully.

2. časť :

C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000G9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000GZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000H9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0004\opr000HR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000HZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000I8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000ID.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000II.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IK.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IL.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000IZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000J9.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JI.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JJ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JM.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JN.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JO.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JP.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JQ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JR.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JS.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JT.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JU.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JV.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JW.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JX.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JY.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000JZ.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K0.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K1.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K2.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K3.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K4.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K5.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K6.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K7.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000K8.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KA.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KB.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KC.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KD.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KE.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KF.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KG.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\cache\g_0005\opr000KH.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\opcache\g_0002\opr0009J.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\opcache\g_0002\opr0009L.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\opcache\g_0002\opr0009N.tmp moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Opera\Opera\opcache\g_0002\opr0009T.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Acer
->Temp folder emptied: 429722 bytes
->Temporary Internet Files folder emptied: 4081250 bytes
->Java cache emptied: 14412361 bytes
->FireFox cache emptied: 91830825 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 10422 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 68391810 bytes
->Flash cache emptied: 1107 bytes

User: All Users

User: BaYa
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 4050928 bytes
->Java cache emptied: 14355880 bytes
->FireFox cache emptied: 3889020 bytes
->Google Chrome cache emptied: 97289021 bytes
->Opera cache emptied: 115104 bytes
->Flash cache emptied: 21727 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41661 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 75 bytes

User: Public
->Temp folder emptied: 0 bytes

User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41 bytes

User: Zuzka
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes
->Java cache emptied: 69894176 bytes
->FireFox cache emptied: 71588051 bytes
->Google Chrome cache emptied: 292202450 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 2631170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 112240 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 743 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 701,00 mb


OTM by OldTimer - Version 3.1.17.1 log created on 10312010_124203

Pokud ty obrazky neznate tak smazte

Start-Ovladaci panely- Moznosti lozky-Zobrazeni-Nezobrazovat skryte soubory a slozky

Odinstalujte Combofix

• Start - Spustit (nebo pouzijte klavesobou zkratku Win+R)
• Napiste ComboFix /Uninstall
• Stisknete Enter
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Tohle Tohle Family Keylogger v3.02 (remove only)-->"D:\FIFA08\FK tam mate umyslne