VIRY.CZ

Zdravím, mám problém so zamŕzaním pc pri surfovaní po nete, prepínaním medzi oknami, teda robí to často posledný týždeň, brzdí ma to, keď si prezerám stránky, trvá tomu dlho kým zobrazí ďalšiu stránku/okno a celkovo sú procesy čímsi, alebo nejako brzdené. Skúsil som Malwarebytes, ale nenašlo nič:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verzia databázy: 6176

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

27. 3. 2011 9:36:49
mbam-log-2011-03-27 (09-36-48).txt

Typ kontroly: Rýchla kontrola
Objektov kontrolovaných: 165481
Uplynutý čas: 12 min, 7 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 0

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
(Škodlivé položky neboli zistené)

Log z RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by scorpio at 2011-03-27 09:02:51
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 45 GB (78%) free of 57 GB
Total RAM: 1023 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:03:02, on 27. 3. 2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\AVG\AVG10\avgui.exe
C:\PROGRA~1\AVG\AVG10\PCTuneup\MICROS~1.EXE
C:\Program Files\AVG\AVG PC Tuneup 2011\boostspeed.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Documents and Settings\scorpio\Local Settings\Temporary Internet Files\Content.IE5\VWZ7B1I9\RSIT[1].exe
C:\Program Files\trend micro\scorpio.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [reset] regedit /s reset.reg
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool (NitroReaderDriverReadSpool) - Nitro PDF Software - C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 8751 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"reset"=regedit /s reset.reg []
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-06-03 131072]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2003-07-31 4493312]
"nwiz"=nwiz.exe /install []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-01 282624]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-02-15 1230704]
"AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2009-11-25 95632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Games\Counter-Strike\hl.exe"="D:\Games\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe"="C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe"="D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe:*:Enabled:hl2"
"D:\Games\Valve\hltv.exe"="D:\Games\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"D:\Games\Crashday\Crashday.exe"="D:\Games\Crashday\Crashday.exe:*:Enabled:Crashday"
"D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE"="D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE:*:Enabled:Worms 4 Mayhem"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"D:\Games\Counter-Strike 1.6\hl.exe"="D:\Games\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostika AVG 2011"
"C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Webový štít"
"C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Inštalátor produktu AVG"
"C:\Program Files\AVG\AVG10\avgam.exe"="C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:AVG Alert Manager"
"C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Obecná kontrola pošty"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-03-27 09:01:25 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-03-26 22:43:45 ----D---- C:\Documents and Settings\scorpio\Data aplikací\AVG10
2011-03-26 22:41:22 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2011-03-26 22:36:52 ----D---- C:\WINDOWS\system32\drivers\AVG
2011-03-26 22:36:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG10
2011-03-26 22:35:40 ----D---- C:\Program Files\AVG
2011-03-26 22:34:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-03-26 22:05:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2011-03-23 18:34:01 ----SHD---- C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU
2011-03-23 17:14:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Family Farm
2011-03-23 17:12:28 ----RSD---- C:\WINDOWS\assembly
2011-03-23 17:11:54 ----D---- C:\WINDOWS\Microsoft.NET
2011-03-23 17:09:24 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-03-23 17:09:15 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-03-23 17:09:00 ----D---- C:\WINDOWS\Logs
2011-03-17 20:14:31 ----D---- C:\Documents and Settings\scorpio\Data aplikací\DDMSettings
2011-03-17 20:01:46 ----D---- C:\Documents and Settings\scorpio\Data aplikací\DivX
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\vxblock.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxwave.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxsfs.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxmas.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxdrv.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\pxafs.dll
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2011-03-17 20:01:14 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2011-03-17 20:01:09 ----N---- C:\WINDOWS\system32\px.dll
2011-03-17 20:00:17 ----D---- C:\Program Files\Common Files\DivX Shared
2011-03-17 19:54:57 ----D---- C:\Program Files\Google
2011-03-17 19:54:48 ----D---- C:\Program Files\DivX
2011-03-17 19:48:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2011-03-17 10:27:53 ----D---- C:\WINDOWS\system32\appmgmt
2011-03-07 17:35:54 ----A---- C:\WINDOWS\Disney.ini
2011-03-01 17:30:17 ----A---- C:\WINDOWS\system32\msonpmon.dll
2011-03-01 17:29:13 ----D---- C:\Program Files\Microsoft Works
2011-03-01 17:29:05 ----D---- C:\Program Files\MSBuild
2011-03-01 17:28:42 ----D---- C:\Program Files\Microsoft Visual Studio
2011-03-01 17:28:42 ----D---- C:\Program Files\Common Files\DESIGNER
2011-03-01 17:24:20 ----D---- C:\WINDOWS\SHELLNEW
2011-03-01 17:22:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-03-01 17:21:58 ----RHD---- C:\MSOCache
2011-02-28 16:54:04 ----D---- C:\Documents and Settings\scorpio\Data aplikací\Apple Computer
2011-02-28 14:28:41 ----D---- C:\Program Files\QuickTime
2011-02-28 14:28:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2011-02-28 14:27:35 ----D---- C:\Program Files\OLYMPUS
2011-02-28 14:26:52 ----D---- C:\Program Files\MSXML 4.0
2011-02-28 14:24:24 ----D---- C:\Program Files\Common Files\Java
2011-02-28 14:24:00 ----A---- C:\WINDOWS\system32\javaws.exe
2011-02-28 14:24:00 ----A---- C:\WINDOWS\system32\javaw.exe
2011-02-28 14:24:00 ----A---- C:\WINDOWS\system32\java.exe
2011-02-28 14:22:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee

======List of files/folders modified in the last 1 months======

2011-03-27 09:02:56 ----D---- C:\Program Files\trend micro
2011-03-27 08:59:49 ----D---- C:\WINDOWS\system32
2011-03-27 08:59:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-03-27 08:57:23 ----D---- C:\WINDOWS\Temp
2011-03-27 08:56:59 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-27 08:56:55 ----D---- C:\Documents and Settings\scorpio\Data aplikací\PriceGong
2011-03-27 08:56:19 ----D---- C:\Windows
2011-03-27 08:56:12 ----D---- C:\Documents and Settings\scorpio\Data aplikací\skypePM
2011-03-27 08:55:56 ----D---- C:\Documents and Settings\scorpio\Data aplikací\Skype
2011-03-26 22:50:37 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-26 22:42:49 ----SHD---- C:\WINDOWS\Installer
2011-03-26 22:40:26 ----HD---- C:\WINDOWS\inf
2011-03-26 22:40:26 ----D---- C:\WINDOWS\system32\drivers
2011-03-26 22:36:40 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-03-26 22:35:40 ----RD---- C:\Program Files
2011-03-26 22:35:31 ----D---- C:\WINDOWS\WinSxS
2011-03-26 22:03:19 ----SD---- C:\WINDOWS\Tasks
2011-03-26 21:35:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2011-03-25 21:23:16 ----D---- C:\Documents and Settings\scorpio\Data aplikací\uTorrent
2011-03-23 17:12:00 ----D---- C:\Program Files\Internet Explorer
2011-03-23 17:09:07 ----D---- C:\WINDOWS\system32\DirectX
2011-03-23 10:07:41 ----D---- C:\Documents and Settings\scorpio\Data aplikací\Nitro PDF
2011-03-21 19:22:37 ----D---- C:\WINDOWS\Prefetch
2011-03-21 13:40:08 ----SD---- C:\Documents and Settings\scorpio\Data aplikací\Microsoft
2011-03-21 13:17:04 ----A---- C:\WINDOWS\win.ini
2011-03-18 18:07:49 ----A---- C:\memory.txt
2011-03-17 20:00:17 ----D---- C:\Program Files\Common Files
2011-03-07 18:30:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2011-03-02 16:24:36 ----D---- C:\WINDOWS\system32\wbem
2011-03-01 17:30:00 ----D---- C:\WINDOWS\system32\config
2011-03-01 17:29:09 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-03-01 17:28:53 ----D---- C:\Program Files\Microsoft Office
2011-03-01 17:28:10 ----RSD---- C:\WINDOWS\Fonts
2011-03-01 17:27:50 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-03-01 17:25:00 ----D---- C:\Program Files\Common Files\System
2011-02-28 14:30:07 ----D---- C:\WINDOWS\system32\CatRoot
2011-02-28 14:23:57 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064]
R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2004-04-02 21760]
R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2004-06-03 79360]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-05-17 50176]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-05-16 19968]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384]
R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-02-15 218688]
R2 ithsgt;ithsgt; C:\WINDOWS\system32\DRIVERS\ithsgt.sys [2011-02-15 162432]
R2 lilsgt;lilsgt; C:\WINDOWS\system32\DRIVERS\lilsgt.sys [2011-02-15 12032]
R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-03 123472]
R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-03 30288]
R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-03 26192]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2003-07-31 1217962]
R3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2004-05-25 48640]
R3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2004-05-25 396032]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2011-01-30 27632]
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\system32\epmntdrv.sys []
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\system32\EuGdiDrv.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-01-30 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-01-30 25512]
S3 pwdrvio;pwdrvio; \??\C:\WINDOWS\System32\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\WINDOWS\System32\pwdspio.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
R2 NitroReaderDriverReadSpool;NitroPDFReaderDriverCreatorReadSpool; C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe [2011-01-14 196912]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2003-07-31 65536]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Hezké dopoledne

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

OTL logfile created on: 27. 3. 2011 16:43:49 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\scorpio\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

1 023,00 Mb Total Physical Memory | 412,00 Mb Available Physical Memory | 40,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55,90 Gb Total Space | 43,63 Gb Free Space | 78,05% Space Free | Partition Type: NTFS
Drive D: | 55,89 Gb Total Space | 12,67 Gb Free Space | 22,67% Space Free | Partition Type: NTFS
Drive F: | 4,00 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: SCORPIO-SINGLE | User Name: scorpio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.03.27 16:42:04 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
PRC - [2011.02.15 03:32:52 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.01.25 13:10:42 | 003,313,504 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgmfapx.exe
PRC - [2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011.01.14 14:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
PRC - [2011.01.07 02:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011.01.07 02:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011.01.06 16:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011.01.06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010.12.05 17:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010.12.05 17:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010.10.22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010.10.22 05:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010.10.22 05:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

========== Modules (SafeList) ==========

MOD - [2011.03.27 16:42:04 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
MOD - [2008.04.14 09:37:06 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011.01.14 14:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe -- (NitroReaderDriverReadSpool)
SRV - [2011.01.06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010.10.22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)

========== Driver Services (SafeList) ==========

DRV - [2011.02.15 22:36:28 | 000,162,432 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\system32\drivers\ithsgt.sys -- (ithsgt)
DRV - [2011.02.15 22:36:28 | 000,012,032 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\system32\drivers\lilsgt.sys -- (lilsgt)
DRV - [2011.02.15 14:39:30 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.01.30 09:49:13 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2011.01.30 09:48:46 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.01.30 09:48:46 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.12.08 05:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010.11.12 14:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010.09.13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010.09.07 04:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010.09.07 04:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010.08.16 16:31:08 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\pwdrvio.sys -- (pwdrvio)
DRV - [2010.08.16 16:31:06 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\pwdspio.sys -- (pwdspio)
DRV - [2010.08.03 16:23:36 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010.08.03 16:23:34 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010.08.03 16:23:32 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2008.11.25 18:18:26 | 000,008,704 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\epmntdrv.sys -- (epmntdrv)
DRV - [2008.11.25 18:18:22 | 000,003,072 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2008.04.14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2005.05.17 14:48:21 | 000,050,176 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 15:23:38 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.08.03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\rtl8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.06.03 11:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004.05.25 16:58:04 | 000,396,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\nvapu.sys -- (nvnforce) Service for NVIDIA(R) nForce(TM)
DRV - [2004.05.25 16:58:02 | 000,048,640 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\nvax.sys -- (nvax) Service for NVIDIA(R) nForce(TM)
DRV - [2004.04.02 16:40:00 | 000,021,760 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
DRV - [2001.08.18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-583907252-113007714-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-583907252-113007714-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011.03.17 20:02:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011.03.17 20:02:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2011.03.26 22:37:05 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2001.10.25 14:00:00 | 000,000,737 | ---- | M]) - C:\Windows\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-583907252-113007714-725345543-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()
O4 - HKU\S-1-5-21-583907252-113007714-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-583907252-113007714-725345543-1003..\Run: [OM2_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe (OLYMPUS IMAGING CORP.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-583907252-113007714-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKU\S-1-5-21-583907252-113007714-725345543-1003\..Trusted Domains: ([]msn in My Computer)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.01.20 17:44:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell - "" = AutoRun
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\AutoRun\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\configure\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\install\command - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.divxa32 - C:\WINDOWS\System32\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.iac2 - C:\Windows\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\WINDOWS\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIV3 - C:\WINDOWS\System32\DivXc32.dll (Hacked with Joy !)
Drivers32: VIDC.DIV4 - C:\WINDOWS\System32\DivXc32f.dll (Hacked with Joy !)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56027131116781568)

========== Files/Folders - Created Within 30 Days ==========

[2011.03.27 16:42:03 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
[2011.03.27 09:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.03.27 09:01:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG PC Tuneup 2011
[2011.03.26 22:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\AVG10
[2011.03.26 22:41:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.03.26 22:40:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG 2011
[2011.03.26 22:36:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.03.26 22:36:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011.03.26 22:35:40 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.03.26 22:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.03.26 22:12:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Nástroje pro správu
[2011.03.26 22:05:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Google
[2011.03.23 18:34:08 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\scorpio\wc
[2011.03.23 18:34:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU
[2011.03.23 17:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Family Farm
[2011.03.23 17:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Family Farm
[2011.03.23 17:12:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011.03.23 17:11:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011.03.23 17:09:24 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2011.03.23 17:09:15 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2011.03.23 17:09:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2011.03.17 20:14:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\DDMSettings
[2011.03.17 20:02:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\scorpio\Dokumenty\Filmy
[2011.03.17 20:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\DivX
[2011.03.17 20:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Dokumenty\DivX Movies
[2011.03.17 20:01:14 | 002,120,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2011.03.17 20:01:14 | 000,567,792 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2011.03.17 20:01:14 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2011.03.17 20:01:14 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2011.03.17 20:01:14 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2011.03.17 20:01:14 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2011.03.17 20:01:14 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2011.03.17 20:01:14 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2011.03.17 20:01:14 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2011.03.17 20:01:14 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2011.03.17 20:01:14 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2011.03.17 20:01:14 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2011.03.17 20:01:14 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2011.03.17 20:01:09 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2011.03.17 20:00:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\DivX Plus
[2011.03.17 20:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2011.03.17 20:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2011.03.17 19:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2011.03.17 19:54:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Google
[2011.03.17 19:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011.03.17 19:54:48 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011.03.17 19:48:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DivX
[2011.03.17 13:08:36 | 000,185,856 | ---- | C] (Smitka development) -- C:\Documents and Settings\scorpio\Plocha\sleep.exe
[2011.03.17 10:27:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2011.03.11 11:03:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Plocha\Auta
[2011.03.09 17:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Counter-Strike 1.6
[2011.03.07 17:35:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Disney Interactive
[2011.03.01 17:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
[2011.03.01 17:30:17 | 000,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2011.03.01 17:29:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2011.03.01 17:29:05 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011.03.01 17:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011.03.01 17:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011.03.01 17:24:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011.03.01 17:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft Help
[2011.03.01 17:22:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2011.03.01 17:21:58 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011.02.28 16:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\Apple Computer
[2011.02.28 16:51:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Apple Computer
[2011.02.28 14:55:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Eidos Interactive
[2011.02.28 14:29:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\OLYMPUS
[2011.02.28 14:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011.02.28 14:28:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\QuickTime
[2011.02.28 14:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2011.02.28 14:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OLYMPUS Master 2
[2011.02.28 14:27:35 | 000,000,000 | ---D | C] -- C:\Program Files\OLYMPUS
[2011.02.28 14:26:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011.02.28 14:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.02.28 14:24:00 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.02.28 14:24:00 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.02.28 14:24:00 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.02.28 14:22:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\McAfee
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.03.27 16:44:50 | 110,072,102 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.03.27 16:44:34 | 000,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.03.27 16:44:34 | 000,392,898 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.03.27 16:44:34 | 000,069,930 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.03.27 16:44:34 | 000,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.03.27 16:42:04 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
[2011.03.27 16:40:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.03.27 09:01:16 | 000,000,841 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\AVG PC Tuneup 2011.lnk
[2011.03.26 22:40:55 | 000,000,737 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.03.26 21:37:42 | 000,000,424 | ---- | M] () -- C:\WINDOWS\zipgenius.xml
[2011.03.24 14:30:09 | 000,035,845 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Orange_doklad_FR_20110315_CN0088921762_2983.zip
[2011.03.24 14:28:25 | 000,001,582 | ---- | M] () -- C:\Documents and Settings\scorpio\Data aplikací\mainhst.zgh
[2011.03.23 17:14:54 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Family Farm.lnk
[2011.03.23 10:12:15 | 006,926,280 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\letak-04.pdf
[2011.03.22 10:30:07 | 000,055,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\alex_n.jpg
[2011.03.22 10:30:07 | 000,055,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\alex a samko.jpg
[2011.03.21 13:17:39 | 000,046,960 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\cv_818325.rtf
[2011.03.21 12:35:12 | 000,000,781 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\sprievodný list.rtf
[2011.03.20 14:24:37 | 000,001,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.ini
[2011.03.17 20:02:14 | 000,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Converter.lnk
[2011.03.17 20:02:14 | 000,001,453 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\DivX Movies.lnk
[2011.03.17 20:01:41 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Player.lnk
[2011.03.17 13:07:29 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.17 11:36:27 | 000,109,782 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\pat mat.jpg
[2011.03.17 11:31:26 | 000,147,862 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\vlak 1.jpg
[2011.03.17 11:28:31 | 000,098,663 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\vlak.jpg
[2011.03.17 10:52:45 | 007,888,044 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\letak-03.pdf
[2011.03.17 10:34:47 | 000,007,930 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\CAPWLQ7ACAG0ABLXCABKXLVPCARX2GSGCANPUNXNCA4D947HCAJ7F9NACA6UAZ2ACA3WDOIRCAOET7GPCAYH39RSCA02C4B8CAWAUZZ6CAA7FOWDCAJT1CMSCAM97QNZCACKNWO2CA0R28FGCALJIDMN.png
[2011.03.14 08:45:06 | 002,195,155 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Fwd__Fwd__Fwd__FW__úžasně_zajímavé...eml
[2011.03.13 14:31:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.03.11 15:40:49 | 000,000,972 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\ImageZoom.htm
[2011.03.09 17:04:40 | 000,000,579 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Counter-Strike 1.6.lnk
[2011.03.09 15:41:20 | 000,578,332 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\foto otec.JPG
[2011.03.07 17:35:54 | 000,000,824 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Tygrova výprava.lnk
[2011.03.07 17:35:54 | 000,000,725 | ---- | M] () -- C:\WINDOWS\Disney.ini
[2011.03.07 12:36:47 | 000,257,024 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\totemhu.pps
[2011.03.02 14:19:06 | 000,267,800 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.02.28 16:51:52 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2011.02.28 14:29:02 | 000,001,615 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2011.02.28 14:28:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011.02.28 14:27:45 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\OLYMPUS Master 2.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.03.27 16:44:50 | 110,072,102 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.03.27 12:17:57 | 001,787,707 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\rPICT0371.JPG
[2011.03.27 12:14:23 | 001,745,940 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\PICT0047.JPG
[2011.03.27 12:12:47 | 002,215,214 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\PICT0007.JPG
[2011.03.27 09:01:16 | 000,000,841 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\AVG PC Tuneup 2011.lnk
[2011.03.26 22:40:55 | 000,000,737 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.03.26 18:48:47 | 001,713,749 | ---- | C] () -- C:\Documents and Settings\scorpio\Dokumenty\PC240940.JPG
[2011.03.24 14:30:09 | 000,035,845 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Orange_doklad_FR_20110315_CN0088921762_2983.zip
[2011.03.23 17:14:54 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Family Farm.lnk
[2011.03.23 10:09:22 | 006,926,280 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\letak-04.pdf
[2011.03.22 11:35:18 | 000,055,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\alex a samko.jpg
[2011.03.22 11:34:53 | 000,055,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\alex_n.jpg
[2011.03.21 12:35:12 | 000,000,781 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\sprievodný list.rtf
[2011.03.20 14:23:31 | 000,001,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.ini
[2011.03.19 17:14:20 | 002,132,480 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.exe
[2011.03.17 20:02:14 | 000,001,453 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\DivX Movies.lnk
[2011.03.17 20:01:40 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Player.lnk
[2011.03.17 20:00:50 | 000,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Converter.lnk
[2011.03.17 11:41:29 | 000,109,782 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\pat mat.jpg
[2011.03.17 11:31:43 | 000,147,862 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\vlak 1.jpg
[2011.03.17 11:29:28 | 000,098,663 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\vlak.jpg
[2011.03.17 10:34:47 | 000,007,930 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\CAPWLQ7ACAG0ABLXCABKXLVPCARX2GSGCANPUNXNCA4D947HCAJ7F9NACA6UAZ2ACA3WDOIRCAOET7GPCAYH39RSCA02C4B8CAWAUZZ6CAA7FOWDCAJT1CMSCAM97QNZCACKNWO2CA0R28FGCALJIDMN.png
[2011.03.17 10:22:27 | 007,888,044 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\letak-03.pdf
[2011.03.14 08:44:59 | 002,195,155 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Fwd__Fwd__Fwd__FW__úžasně_zajímavé...eml
[2011.03.11 15:40:48 | 000,000,972 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\ImageZoom.htm
[2011.03.09 17:04:40 | 000,000,579 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Counter-Strike 1.6.lnk
[2011.03.09 15:41:20 | 000,578,332 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\foto otec.JPG
[2011.03.07 17:35:54 | 000,000,824 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Tygrova výprava.lnk
[2011.03.07 17:35:54 | 000,000,725 | ---- | C] () -- C:\WINDOWS\Disney.ini
[2011.03.07 12:36:46 | 000,257,024 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\totemhu.pps
[2011.02.28 16:51:52 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2011.02.28 14:29:02 | 000,001,615 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2011.02.28 14:27:45 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\OLYMPUS Master 2.lnk
[2011.02.15 22:36:28 | 000,162,432 | ---- | C] () -- C:\WINDOWS\System32\drivers\ithsgt.sys
[2011.02.15 22:36:28 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\lilsgt.sys
[2011.02.15 16:32:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.02.11 14:16:50 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.02.07 14:44:51 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011.01.26 09:58:36 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.25 16:49:08 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011.01.25 16:49:08 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011.01.25 16:49:06 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.01.25 16:49:06 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.01.25 16:49:06 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.01.24 18:39:40 | 000,001,582 | ---- | C] () -- C:\Documents and Settings\scorpio\Data aplikací\mainhst.zgh
[2011.01.22 18:23:50 | 000,472,064 | ---- | C] () -- C:\WINDOWS\System32\NTFSFormat.dll
[2011.01.22 18:23:50 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2011.01.22 18:23:50 | 000,180,736 | ---- | C] () -- C:\WINDOWS\System32\DeviceManager.dll
[2011.01.22 18:23:50 | 000,139,776 | ---- | C] () -- C:\WINDOWS\System32\NTFSCopy.dll
[2011.01.22 18:23:50 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\Partition.dll
[2011.01.22 18:23:50 | 000,086,528 | ---- | C] () -- C:\WINDOWS\System32\NTFSLib.dll
[2011.01.22 18:23:50 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2011.01.22 18:23:50 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ResizeNTFS.dll
[2011.01.22 18:23:50 | 000,068,096 | ---- | C] () -- C:\WINDOWS\System32\Device.dll
[2011.01.22 18:23:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\FatCopy.dll
[2011.01.22 18:23:50 | 000,061,952 | ---- | C] () -- C:\WINDOWS\System32\FatResizeMove.dll
[2011.01.22 18:23:50 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\FileSystemCheck.dll
[2011.01.22 18:23:50 | 000,031,744 | ---- | C] () -- C:\WINDOWS\System32\FatLib.dll
[2011.01.22 18:23:50 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\FATFileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\NTFSFileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\FatFormat.dll
[2011.01.22 18:23:50 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\Fixup.dll
[2011.01.22 18:23:50 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\SectorCopy.dll
[2011.01.22 18:23:50 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\FileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2011.01.22 18:23:50 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\DeviceAdapter.dll
[2011.01.22 18:23:50 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2011.01.22 18:23:50 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CallbackOperator.dll
[2011.01.22 18:23:50 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2011.01.20 18:31:20 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.01.20 18:30:16 | 000,267,800 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.01.20 18:21:19 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll
[2011.01.20 18:08:12 | 000,725,064 | ---- | C] () -- C:\WINDOWS\System32\pwNative.exe
[2011.01.20 18:08:12 | 000,016,472 | ---- | C] () -- C:\WINDOWS\System32\pwdrvio.sys
[2011.01.20 18:08:11 | 000,011,104 | ---- | C] () -- C:\WINDOWS\System32\pwdspio.sys
[2011.01.20 17:47:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.01.20 17:41:17 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004.08.02 15:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001.10.25 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 14:00:00 | 000,395,200 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 14:00:00 | 000,392,898 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 14:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 14:00:00 | 000,069,930 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 14:00:00 | 000,059,440 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 14:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001.10.25 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011.03.26 22:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.03.26 22:41:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.03.07 18:30:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.03.26 21:35:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.03.23 17:14:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Family Farm
[2011.03.26 22:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.02.24 11:29:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nitro PDF
[2011.03.27 10:09:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.02.09 11:41:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Data aplikací\PriceGong
[2011.02.24 11:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\AnvSoft
[2011.03.26 22:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\AVG10
[2011.01.26 08:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\BabylonToolbar
[2011.02.15 14:44:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\DAEMON Tools Lite
[2011.03.17 20:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\DDMSettings
[2011.02.25 15:45:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\ESET
[2011.03.23 10:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Nitro PDF
[2011.02.24 11:25:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\OpenCandy
[2011.03.27 16:41:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\PriceGong
[2011.03.25 21:23:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\uTorrent
[2011.03.23 18:34:02 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU
[2011.02.08 18:00:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\ZipGenius

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 09:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2011.01.26 18:05:34 | 015,026,056 | R--- | M] (Skype Technologies S.A.)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd)
"OM2_Monitor" = "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart -- [2009.11.25 21:42:26 | 000,095,632 | ---- | M] (OLYMPUS IMAGING CORP.)

< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.01.30 22:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Adobe
[2011.02.24 11:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\AnvSoft
[2011.02.28 16:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Apple Computer
[2011.03.26 22:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\AVG10
[2011.01.26 08:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\BabylonToolbar
[2011.02.15 14:44:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\DAEMON Tools Lite
[2011.03.17 20:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\DDMSettings
[2011.03.17 20:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\DivX
[2011.02.25 15:45:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\ESET
[2011.01.20 18:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Identities
[2011.01.22 18:05:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Macromedia
[2011.02.15 09:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Malwarebytes
[2011.01.28 22:31:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Media Player Classic
[2011.03.21 13:40:08 | 000,000,000 | --SD | M] -- C:\Documents and Settings\scorpio\Data aplikací\Microsoft
[2011.01.24 11:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\MSN6
[2011.03.23 10:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Nitro PDF
[2011.02.24 11:25:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\OpenCandy
[2011.03.27 16:41:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\PriceGong
[2011.03.27 16:40:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Skype
[2011.03.27 16:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\skypePM
[2011.01.27 14:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\Sun
[2011.03.25 21:23:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\uTorrent
[2011.03.23 18:34:02 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU
[2011.02.08 18:00:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\scorpio\Data aplikací\ZipGenius

< %APPDATA%\*.exe /s >
[2011.02.24 11:25:59 | 000,356,576 | ---- | M] () -- C:\Documents and Settings\scorpio\Data aplikací\OpenCandy\OpenCandy_03A5E8B3BF974903BA9B9DC3A3079D5E\LatestDLMgr.exe
[2011.02.24 11:28:15 | 031,880,832 | ---- | M] () -- C:\Documents and Settings\scorpio\Data aplikací\OpenCandy\OpenCandy_03A5E8B3BF974903BA9B9DC3A3079D5E\NitriPDFen32_p1v2.exe

< MD5 for: AGP440.SYS >
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Windows\ServicePackFiles\i386\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Windows\system32\drivers\agp440.sys
[2004.08.04 00:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\Windows\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Windows\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Windows\system32\drivers\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Windows\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys
[2004.08.03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\Windows\$NtServicePackUninstall$\atapi.sys

< MD5 for: CDROM.SYS >
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Windows\ServicePackFiles\i386\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Windows\system32\drivers\cdrom.sys
[2004.08.03 23:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Windows\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.17 16:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\Windows\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\Windows\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\Windows\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\Windows\ServicePackFiles\i386\eventlog.dll
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\Windows\system32\eventlog.dll
[2004.08.17 16:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\Windows\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\Windows\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\Windows\ServicePackFiles\i386\explorer.exe
[2004.08.17 16:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\Windows\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\Windows\ServicePackFiles\i386\hal.dll
[2008.04.14 01:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\Windows\system32\HAL.DLL
[2004.08.03 23:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\Windows\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.17 16:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\Windows\ServicePackFiles\i386\changer.sys
[2004.08.04 00:00:14 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- C:\Windows\$NtServicePackUninstall$\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\Windows\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.25 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Windows\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\Windows\ServicePackFiles\i386\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\Windows\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.17 16:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\Windows\$NtServicePackUninstall$\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\Windows\ServicePackFiles\i386\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\Windows\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\Windows\ServicePackFiles\i386\ndis.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\Windows\system32\drivers\ndis.sys
[2004.08.04 00:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\Windows\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.17 16:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\Windows\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\Windows\ServicePackFiles\i386\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\Windows\system32\netlogon.dll

< MD5 for: NVATABUS.SYS >
[2004.06.03 11:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) MD5=46DEED4C6C5FA765F9A2C723BE60348D -- C:\NVIDIA\nForceWin2KXP\5.10\IDE\Win2K\NvAtaBus.sys
[2004.06.03 11:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) MD5=46DEED4C6C5FA765F9A2C723BE60348D -- C:\NVIDIA\nForceWin2KXP\5.10\IDE\WinXP\NvAtaBus.sys
[2004.06.03 11:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) MD5=46DEED4C6C5FA765F9A2C723BE60348D -- C:\Windows\system32\drivers\nvatabus.sys

< MD5 for: NVRAID.SYS >
[2004.06.03 11:40:50 | 000,068,224 | ---- | M] (NVIDIA Corporation) MD5=A5C77D944410FADEE380FB20B432760D -- C:\NVIDIA\nForceWin2KXP\5.10\IDE\Win2K\nvraid.sys
[2004.06.03 11:40:50 | 000,068,224 | ---- | M] (NVIDIA Corporation) MD5=A5C77D944410FADEE380FB20B432760D -- C:\NVIDIA\nForceWin2KXP\5.10\IDE\WinXP\nvraid.sys

< MD5 for: SCECLI.DLL >
[2004.08.17 16:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\Windows\$NtServicePackUninstall$\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\Windows\ServicePackFiles\i386\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\Windows\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 16:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\Windows\$NtServicePackUninstall$\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\Windows\ServicePackFiles\i386\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\Windows\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\Windows\ServicePackFiles\i386\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\Windows\system32\svchost.exe
[2004.08.17 16:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\Windows\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\Windows\ServicePackFiles\i386\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\Windows\system32\drivers\tcpip.sys
[2004.08.04 00:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\Windows\$NtServicePackUninstall$\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\Windows\ServicePackFiles\i386\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\Windows\system32\userinit.exe
[2004.08.17 16:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\Windows\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 16:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\Windows\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\Windows\ServicePackFiles\i386\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\Windows\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.17 16:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\Windows\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\Windows\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\Windows\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2007.08.13 19:35:46 | 000,346,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2007.08.13 19:35:38 | 000,214,528 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2007.08.13 19:54:10 | 000,191,488 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2011.01.20 18:29:24 | 000,094,208 | ---- | M] () -- C:\Windows\system32\config\default.sav
[2011.01.20 18:29:24 | 000,634,880 | ---- | M] () -- C:\Windows\system32\config\software.sav
[2011.01.20 18:29:24 | 000,405,504 | ---- | M] () -- C:\Windows\system32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2007.08.13 19:35:46 | 000,346,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2007.08.13 19:35:38 | 000,214,528 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2007.08.13 19:54:10 | 000,191,488 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemRoot%\System32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.03.27 16:44:34 | 000,069,930 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011.03.27 16:44:34 | 000,059,440 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011.03.27 16:44:34 | 000,392,898 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011.03.27 16:44:34 | 000,395,200 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011.03.27 16:44:33 | 000,929,542 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

========== Alternate Data Streams ==========

@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4

< End of report >

OTL Extras.txt:

OTL Extras logfile created on: 27. 3. 2011 16:43:49 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\scorpio\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

1 023,00 Mb Total Physical Memory | 412,00 Mb Available Physical Memory | 40,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55,90 Gb Total Space | 43,63 Gb Free Space | 78,05% Space Free | Partition Type: NTFS
Drive D: | 55,89 Gb Total Space | 12,67 Gb Free Space | 22,67% Space Free | Partition Type: NTFS
Drive F: | 4,00 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: SCORPIO-SINGLE | User Name: scorpio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-583907252-113007714-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Games\Counter-Strike\hl.exe" = D:\Games\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe" = C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service -- ()
"D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe" = D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe:*:Enabled:hl2 -- ()
"D:\Games\Valve\hltv.exe" = D:\Games\Valve\hltv.exe:*:Enabled:HLTV Launcher
"D:\Games\Crashday\Crashday.exe" = D:\Games\Crashday\Crashday.exe:*:Enabled:Crashday -- ()
"D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE" = D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE:*:Enabled:Worms 4 Mayhem -- (Team 17 Ltd)
"D:\Games\Counter-Strike 1.6\hl.exe" = D:\Games\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\AVG\AVG10\avgdiagex.exe" = C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostika AVG 2011 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgnsx.exe" = C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Webový štít -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgmfapx.exe" = C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Inštalátor produktu AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgam.exe" = C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:AVG Alert Manager -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgemcx.exe" = C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Obecná kontrola pošty -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 24
"{2881063B-C58F-49EB-97FD-8BF58EC580F9}" = Nitro PDF Reader
"{2C7C0033-0EB0-4271-853D-5A4ED6825641}_is1" = Ford Racing 2
"{350C97C4-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C}" = Worms 4 Mayhem
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{57030680-6253-4281-A3F3-83B090BD932B}_is1" = Crashday
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{95120000-00AF-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Czech)
"{99A9A797-963E-4D94-802A-0EB97BED288A}_is1" = Ford Racing 3
"{A276502A-8979-44FB-8090-90CF72F22ABC}" = AVG 2011
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A979B2D8-E3EE-4523-A26C-4AF0A6809280}" = Sniper Elite
"{AC76BA86-7AD7-1029-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Czech
"{BD71ADC0-0616-4EC2-A43A-8A7EBF3A85E6}" = Tygrova výprava
"{CBC85F2E-1981-4C55-9418-908D08D2C6E8}" = OLYMPUS Master 2
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D7A6C517-11F2-419F-B5BB-27772B939698}" = NvMixer
"{E35AF511-B618-4D02-B559-0F2147341D3B}" = AVG 2011
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6 (6.3.1.2614)
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Any Video Converter_is1" = Any Video Converter 3.1.8
"AVG" = AVG 2011
"conduitEngine" = Conduit Engine
"Counter-Strike" = Counter-Strike 1.0
"Counter-Strike 1.6" = Counter-Strike 1.6
"DAEMON Tools Lite" = DAEMON Tools Lite
"DivX Setup.divx.com" = DivX Setup
"EASEUS Partition Manager Home Edition_is1" = EASEUS Partition Manager 3.0 Home Edition
"ENTERPRISE" = Microsoft Office Enterprise 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{BD71ADC0-0616-4EC2-A43A-8A7EBF3A85E6}" = Tygrova výprava
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.8.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Nero - Burning Rom!UninstallKey" = Nero 6 Enterprise Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"NVIDIA Drivers" = NVIDIA Drivers
"PC Wizard 2010_is1" = PC Wizard 2010.1.94
"Scorpions WinCheater 2.07 (s databází 117)_is1" = Scorpions WinCheater
"Steam App 220" = Half-Life 2
"Steam App 400" = Portal
"Steam App 440" = Team Fortress 2
"Update Service" = Sony Ericsson Update Service
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows XP Service Pack" = Windows XP Service Pack 3

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-583907252-113007714-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Family Farm" = Family Farm

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 23. 2. 2011 10:34:13 | Computer Name = SCORPIO-SINGLE | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 25. 2. 2011 9:55:32 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25. 2. 2011 9:55:38 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25. 2. 2011 9:57:34 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 28. 2. 2011 10:19:34 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace igi.exe, verze 0.0.0.0, chybující modul igi.exe,
verze 0.0.0.0, adresa chyby 0x0010daf7.

Error - 1. 3. 2011 11:00:46 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace igi.exe, verze 0.0.0.0, chybující modul igi.exe,
verze 0.0.0.0, adresa chyby 0x0010dba5.

Error - 2. 3. 2011 10:24:35 | Computer Name = SCORPIO-SINGLE | Source = LoadPerf | ID = 3006
Description = Nelze číst řetězce čítače výkonu ID jazyka 01b. Stav Win32 vrácený
voláním je v první hodnotě DWORD v datové oblasti.

Error - 4. 3. 2011 8:01:00 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace IGI.exe, verze 0.0.0.0, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 7. 3. 2011 10:28:20 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.5730.13, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x6e016646.

Error - 8. 3. 2011 10:27:29 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.5730.13, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x6e016646.

[ System Events ]
Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842784
Description = Závislá symbolická adresa Microsoft.VC80.ATL nebyla nalezena a poslední
chyba byla Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly pro Microsoft.VC80.ATL se nezdařila. Referenční
chybová zpráva: Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Generate Activation Context pro C:\Program Files\DivX\DivX Transcode
Engine\gzHF330.ddc se nezdařila. Referenční chybová zpráva: Operace byla dokončena
úspěšně. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842784
Description = Závislá symbolická adresa Microsoft.VC80.ATL nebyla nalezena a poslední
chyba byla Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly pro Microsoft.VC80.ATL se nezdařila. Referenční
chybová zpráva: Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Generate Activation Context pro C:\Program Files\DivX\DivX Transcode
Engine\mtw178.ddc se nezdařila. Referenční chybová zpráva: Operace byla dokončena
úspěšně. .

Error - 21. 3. 2011 15:11:06 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7038
Description = Přihlášení služby RemoteRegistry jako uživatel NT AUTHORITY\LocalService
se se současně nakonfigurovaným heslem nezdařilo. Došlo k následující chybě: %%5

Zkontrolujte
konfiguraci služby pomocí modulu snap-in Služby v konzole Microsoft Management Console
(MMC).

Error - 21. 3. 2011 15:11:06 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7000
Description = Služba Vzdálený registr neuspěla při spuštění v důsledku následující
chyby: %%1069

Error - 26. 3. 2011 15:30:33 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7038
Description = Přihlášení služby SSDPSRV jako uživatel NT AUTHORITY\LocalService
se se současně nakonfigurovaným heslem nezdařilo. Došlo k následující chybě: %%5 Zkontrolujte
konfiguraci služby pomocí modulu snap-in Služby v konzole Microsoft Management Console
(MMC).

Error - 26. 3. 2011 15:30:33 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7000
Description = Služba Služba rozpoznávání pomocí protokolu SSDP neuspěla při spuštění
v důsledku následující chyby: %%1069

< End of report >

Tento soubor znáte?
C:\Documents and Settings\scorpio\Plocha\CAPWLQ7ACAG0ABLXCABKXLVPCARX2GSGCANPUNXNCA4D947HCAJ7F9NACA6UAZ2ACA3WDOIRCAOET7GPCAYH39RSCA02C4B8CAWAUZZ6CAA7FOWDCAJT1CMSCAM97QNZCACKNWO2CA0R28FGCALJIDMN.png

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()

:files
C:\WINDOWS\System32\ezsidmv.dat
 C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\Documents and Settings\scorpio\Data aplikací\PriceGong
C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU

:commands
[emptytemp]
[EMPTYFLASH]
[clearallrestorepoints]
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde

Nepoznám ten súbor. Ostatné spravím ešte dopoludnia

Můžete prosím ten soubor otestovat na www.virustotal.com?

opravit v OTL sa rovná CleanUp?

- už si pamätám, čo to je za súbor - mám ho z mailu, ale nie zo spamu, z overenej adresy

z vwww.virustotal.com stačí toto?:

File name: CAPWLQ7ACAG0ABLXCABKXLVPCARX2GSGCANPUNXNCA4D947HCAJ7F9NAC[...].png
Submission date: 2011-03-28 07:48:07 (UTC)
Current status: queued queued analysing finished

Result: 0/ 43 (0.0%)

takže spravil som to - OTL a CleanUp, ale po reštartovaní som nedostal žiaden log+zmizol mi OTL z plochy

Ne, stahněte ho znovu a je to Run fix.
Tím clean up jste si po Otl uklidil

to mám pre to,že som netrpezlivý
takže tu je ďalší log:
OTL logfile created on: 29. 3. 2011 7:08:36 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\scorpio\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

1 023,00 Mb Total Physical Memory | 485,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 69,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55,90 Gb Total Space | 43,62 Gb Free Space | 78,03% Space Free | Partition Type: NTFS
Drive D: | 55,89 Gb Total Space | 12,67 Gb Free Space | 22,67% Space Free | Partition Type: NTFS
Drive F: | 4,00 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: SCORPIO-SINGLE | User Name: scorpio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.03.29 07:06:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
PRC - [2011.02.15 03:32:52 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011.01.14 14:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
PRC - [2011.01.07 02:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011.01.07 02:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011.01.06 16:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011.01.06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010.12.05 17:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010.12.05 17:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010.10.22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010.10.22 05:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010.10.22 05:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

========== Modules (SafeList) ==========

MOD - [2011.03.29 07:06:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
MOD - [2008.04.14 09:37:06 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011.01.14 14:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe -- (NitroReaderDriverReadSpool)
SRV - [2011.01.06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010.10.22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)

========== Driver Services (SafeList) ==========

DRV - [2011.02.15 22:36:28 | 000,162,432 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\system32\drivers\ithsgt.sys -- (ithsgt)
DRV - [2011.02.15 22:36:28 | 000,012,032 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\system32\drivers\lilsgt.sys -- (lilsgt)
DRV - [2011.02.15 14:39:30 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.01.30 09:49:13 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2011.01.30 09:48:46 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.01.30 09:48:46 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.12.08 05:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010.11.12 14:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010.09.13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010.09.07 04:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010.09.07 04:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010.08.16 16:31:08 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\pwdrvio.sys -- (pwdrvio)
DRV - [2010.08.16 16:31:06 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\pwdspio.sys -- (pwdspio)
DRV - [2010.08.03 16:23:36 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010.08.03 16:23:34 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010.08.03 16:23:32 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2008.11.25 18:18:26 | 000,008,704 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\epmntdrv.sys -- (epmntdrv)
DRV - [2008.11.25 18:18:22 | 000,003,072 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2008.04.14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2005.05.17 14:48:21 | 000,050,176 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 15:23:38 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.08.03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\rtl8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004.06.03 11:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004.05.25 16:58:04 | 000,396,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\nvapu.sys -- (nvnforce) Service for NVIDIA(R) nForce(TM)
DRV - [2004.05.25 16:58:02 | 000,048,640 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\nvax.sys -- (nvax) Service for NVIDIA(R) nForce(TM)
DRV - [2004.04.02 16:40:00 | 000,021,760 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
DRV - [2001.08.18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011.03.17 20:02:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011.03.17 20:02:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2011.03.26 22:37:05 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2001.10.25 14:00:00 | 000,000,737 | ---- | M]) - C:\Windows\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [OM2_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe (OLYMPUS IMAGING CORP.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKCU\..Trusted Domains: ([]msn in My Computer)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.01.20 17:44:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell - "" = AutoRun
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\AutoRun\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\configure\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{9e4297e7-3900-11e0-a48b-00e04c03cb0b}\Shell\install\command - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[clearallrestorepoints]
Restore points cleared and new OTL Restore Point set!

========== Files/Folders - Created Within 30 Days ==========

[2011.03.29 07:06:39 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
[2011.03.27 09:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.03.27 09:01:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG PC Tuneup 2011
[2011.03.26 22:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\AVG10
[2011.03.26 22:41:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.03.26 22:40:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG 2011
[2011.03.26 22:36:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.03.26 22:36:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011.03.26 22:35:40 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.03.26 22:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.03.26 22:12:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Nástroje pro správu
[2011.03.26 22:05:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Google
[2011.03.23 18:34:08 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\scorpio\wc
[2011.03.23 18:34:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU
[2011.03.23 17:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Family Farm
[2011.03.23 17:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Family Farm
[2011.03.23 17:12:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011.03.23 17:11:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011.03.23 17:09:24 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2011.03.23 17:09:15 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2011.03.23 17:09:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2011.03.17 20:14:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\DDMSettings
[2011.03.17 20:02:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\scorpio\Dokumenty\Filmy
[2011.03.17 20:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\DivX
[2011.03.17 20:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Dokumenty\DivX Movies
[2011.03.17 20:01:14 | 002,120,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2011.03.17 20:01:14 | 000,567,792 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2011.03.17 20:01:14 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2011.03.17 20:01:14 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2011.03.17 20:01:14 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2011.03.17 20:01:14 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2011.03.17 20:01:14 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2011.03.17 20:01:14 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2011.03.17 20:01:14 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2011.03.17 20:01:14 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2011.03.17 20:01:14 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2011.03.17 20:01:14 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2011.03.17 20:01:14 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2011.03.17 20:01:09 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2011.03.17 20:00:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\DivX Plus
[2011.03.17 20:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2011.03.17 20:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2011.03.17 19:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2011.03.17 19:54:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Google
[2011.03.17 19:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011.03.17 19:54:48 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2011.03.17 19:48:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DivX
[2011.03.17 13:08:36 | 000,185,856 | ---- | C] (Smitka development) -- C:\Documents and Settings\scorpio\Plocha\sleep.exe
[2011.03.17 10:27:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2011.03.11 11:03:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Plocha\Auta
[2011.03.09 17:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Counter-Strike 1.6
[2011.03.07 17:35:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Nabídka Start\Programy\Disney Interactive
[2011.03.01 17:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
[2011.03.01 17:30:17 | 000,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2011.03.01 17:29:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2011.03.01 17:29:05 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011.03.01 17:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011.03.01 17:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011.03.01 17:24:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011.03.01 17:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Microsoft Help
[2011.03.01 17:22:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2011.03.01 17:21:58 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011.02.28 16:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Data aplikací\Apple Computer
[2011.02.28 16:51:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\Apple Computer
[2011.02.28 14:55:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Eidos Interactive
[2011.02.28 14:29:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\OLYMPUS
[2011.02.28 14:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011.02.28 14:28:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\QuickTime
[2011.02.28 14:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2011.02.28 14:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OLYMPUS Master 2
[2011.02.28 14:27:35 | 000,000,000 | ---D | C] -- C:\Program Files\OLYMPUS
[2011.02.28 14:26:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011.02.28 14:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.02.28 14:24:00 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.02.28 14:24:00 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.02.28 14:24:00 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.02.28 14:22:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\McAfee
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.03.29 07:07:41 | 110,164,074 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.03.29 07:06:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\scorpio\Plocha\OTL.exe
[2011.03.29 07:03:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.03.28 12:43:56 | 000,267,800 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.03.28 12:37:26 | 000,001,743 | ---- | M] () -- C:\Documents and Settings\scorpio\Data aplikací\mainhst.zgh
[2011.03.28 12:05:01 | 000,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.03.28 12:05:01 | 000,392,898 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.03.28 12:05:01 | 000,069,930 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.03.28 12:05:01 | 000,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.03.27 09:01:16 | 000,000,841 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\AVG PC Tuneup 2011.lnk
[2011.03.26 22:40:55 | 000,000,737 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.03.26 21:37:42 | 000,000,424 | ---- | M] () -- C:\WINDOWS\zipgenius.xml
[2011.03.24 14:30:09 | 000,035,845 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Orange_doklad_FR_20110315_CN0088921762_2983.zip
[2011.03.23 17:14:54 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Family Farm.lnk
[2011.03.23 10:12:15 | 006,926,280 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\letak-04.pdf
[2011.03.22 10:30:07 | 000,055,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\alex_n.jpg
[2011.03.22 10:30:07 | 000,055,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\alex a samko.jpg
[2011.03.21 13:17:39 | 000,046,960 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\cv_818325.rtf
[2011.03.21 12:35:12 | 000,000,781 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\sprievodný list.rtf
[2011.03.20 14:24:37 | 000,001,868 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.ini
[2011.03.17 20:02:14 | 000,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Converter.lnk
[2011.03.17 20:02:14 | 000,001,453 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\DivX Movies.lnk
[2011.03.17 20:01:41 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Player.lnk
[2011.03.17 13:07:29 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.17 11:36:27 | 000,109,782 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\pat mat.jpg
[2011.03.17 11:31:26 | 000,147,862 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\vlak 1.jpg
[2011.03.17 11:28:31 | 000,098,663 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\vlak.jpg
[2011.03.17 10:52:45 | 007,888,044 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\letak-03.pdf
[2011.03.14 08:45:06 | 002,195,155 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Fwd__Fwd__Fwd__FW__úžasně_zajímavé...eml
[2011.03.13 14:31:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.03.11 15:40:49 | 000,000,972 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\ImageZoom.htm
[2011.03.09 17:04:40 | 000,000,579 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Counter-Strike 1.6.lnk
[2011.03.09 15:41:20 | 000,578,332 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\foto otec.JPG
[2011.03.07 17:35:54 | 000,000,824 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\Tygrova výprava.lnk
[2011.03.07 17:35:54 | 000,000,725 | ---- | M] () -- C:\WINDOWS\Disney.ini
[2011.03.07 12:36:47 | 000,257,024 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\totemhu.pps
[2011.02.28 16:51:52 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2011.02.28 14:29:02 | 000,001,615 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2011.02.28 14:28:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011.02.28 14:27:45 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\scorpio\Plocha\OLYMPUS Master 2.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.03.29 07:07:41 | 110,164,074 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.03.27 12:17:57 | 001,787,707 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\rPICT0371.JPG
[2011.03.27 12:14:23 | 001,745,940 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\PICT0047.JPG
[2011.03.27 12:12:47 | 002,215,214 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\PICT0007.JPG
[2011.03.27 09:01:16 | 000,000,841 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\AVG PC Tuneup 2011.lnk
[2011.03.26 22:40:55 | 000,000,737 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.03.26 18:48:47 | 001,713,749 | ---- | C] () -- C:\Documents and Settings\scorpio\Dokumenty\PC240940.JPG
[2011.03.24 14:30:09 | 000,035,845 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Orange_doklad_FR_20110315_CN0088921762_2983.zip
[2011.03.23 17:14:54 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Family Farm.lnk
[2011.03.23 10:09:22 | 006,926,280 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\letak-04.pdf
[2011.03.22 11:35:18 | 000,055,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\alex a samko.jpg
[2011.03.22 11:34:53 | 000,055,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\alex_n.jpg
[2011.03.21 12:35:12 | 000,000,781 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\sprievodný list.rtf
[2011.03.20 14:23:31 | 000,001,868 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.ini
[2011.03.19 17:14:20 | 002,132,480 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\LogoMotion.exe
[2011.03.17 20:02:14 | 000,001,453 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\DivX Movies.lnk
[2011.03.17 20:01:40 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Player.lnk
[2011.03.17 20:00:50 | 000,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Converter.lnk
[2011.03.17 11:41:29 | 000,109,782 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\pat mat.jpg
[2011.03.17 11:31:43 | 000,147,862 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\vlak 1.jpg
[2011.03.17 11:29:28 | 000,098,663 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\vlak.jpg
[2011.03.17 10:22:27 | 007,888,044 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\letak-03.pdf
[2011.03.14 08:44:59 | 002,195,155 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Fwd__Fwd__Fwd__FW__úžasně_zajímavé...eml
[2011.03.11 15:40:48 | 000,000,972 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\ImageZoom.htm
[2011.03.09 17:04:40 | 000,000,579 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Counter-Strike 1.6.lnk
[2011.03.09 15:41:20 | 000,578,332 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\foto otec.JPG
[2011.03.07 17:35:54 | 000,000,824 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\Tygrova výprava.lnk
[2011.03.07 17:35:54 | 000,000,725 | ---- | C] () -- C:\WINDOWS\Disney.ini
[2011.03.07 12:36:46 | 000,257,024 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\totemhu.pps
[2011.02.28 16:51:52 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2011.02.28 14:29:02 | 000,001,615 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2011.02.28 14:27:45 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\scorpio\Plocha\OLYMPUS Master 2.lnk
[2011.02.15 22:36:28 | 000,162,432 | ---- | C] () -- C:\WINDOWS\System32\drivers\ithsgt.sys
[2011.02.15 22:36:28 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\lilsgt.sys
[2011.02.15 16:32:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.02.11 14:16:50 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.02.07 14:44:51 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011.01.26 09:58:36 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.25 16:49:08 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011.01.25 16:49:08 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011.01.25 16:49:06 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.01.25 16:49:06 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.01.25 16:49:06 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.01.24 18:39:40 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\scorpio\Data aplikací\mainhst.zgh
[2011.01.22 18:23:50 | 000,472,064 | ---- | C] () -- C:\WINDOWS\System32\NTFSFormat.dll
[2011.01.22 18:23:50 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2011.01.22 18:23:50 | 000,180,736 | ---- | C] () -- C:\WINDOWS\System32\DeviceManager.dll
[2011.01.22 18:23:50 | 000,139,776 | ---- | C] () -- C:\WINDOWS\System32\NTFSCopy.dll
[2011.01.22 18:23:50 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\Partition.dll
[2011.01.22 18:23:50 | 000,086,528 | ---- | C] () -- C:\WINDOWS\System32\NTFSLib.dll
[2011.01.22 18:23:50 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2011.01.22 18:23:50 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ResizeNTFS.dll
[2011.01.22 18:23:50 | 000,068,096 | ---- | C] () -- C:\WINDOWS\System32\Device.dll
[2011.01.22 18:23:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\FatCopy.dll
[2011.01.22 18:23:50 | 000,061,952 | ---- | C] () -- C:\WINDOWS\System32\FatResizeMove.dll
[2011.01.22 18:23:50 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\FileSystemCheck.dll
[2011.01.22 18:23:50 | 000,031,744 | ---- | C] () -- C:\WINDOWS\System32\FatLib.dll
[2011.01.22 18:23:50 | 000,025,088 | ---- | C] () -- C:\WINDOWS\System32\FATFileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\NTFSFileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\FatFormat.dll
[2011.01.22 18:23:50 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\Fixup.dll
[2011.01.22 18:23:50 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\SectorCopy.dll
[2011.01.22 18:23:50 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\FileSystemAnalyser.dll
[2011.01.22 18:23:50 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2011.01.22 18:23:50 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\DeviceAdapter.dll
[2011.01.22 18:23:50 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2011.01.22 18:23:50 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CallbackOperator.dll
[2011.01.22 18:23:50 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2011.01.20 18:31:20 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.01.20 18:30:16 | 000,267,800 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.01.20 18:21:19 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll
[2011.01.20 18:08:12 | 000,725,064 | ---- | C] () -- C:\WINDOWS\System32\pwNative.exe
[2011.01.20 18:08:12 | 000,016,472 | ---- | C] () -- C:\WINDOWS\System32\pwdrvio.sys
[2011.01.20 18:08:11 | 000,011,104 | ---- | C] () -- C:\WINDOWS\System32\pwdspio.sys
[2011.01.20 17:47:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.01.20 17:41:17 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004.08.02 15:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001.10.25 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 14:00:00 | 000,395,200 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 14:00:00 | 000,392,898 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 14:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 14:00:00 | 000,069,930 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 14:00:00 | 000,059,440 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 14:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001.10.25 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== Custom Scans ==========

< :OTL >

< PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) >

< @Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4 >

< O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg () >

< >

< :files >

< C:\WINDOWS\System32\ezsidmv.dat >
[2011.02.07 14:44:51 | 000,000,056 | -H-- | M] () -- C:\Windows\system32\ezsidmv.dat
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

< C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini >
[2011.03.17 13:07:29 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\scorpio\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

< C:\WINDOWS\system32\*.tmp.dll /s >

< C:\WINDOWS\system32\SET*.tmp /s >

< C:\WINDOWS\*.tmp /s >
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[9 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< C:\Documents and Settings\scorpio\Data aplikací\PriceGong >

< C:\Documents and Settings\scorpio\Data aplikací\wyUpdate AU >

< >

< :commands >

< [emptytemp] >

< [EMPTYFLASH] >

< [Reboot] >

========== Alternate Data Streams ==========

@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4

< End of report >

A ešte Extras:
OTL Extras logfile created on: 29. 3. 2011 7:08:36 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\scorpio\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

1 023,00 Mb Total Physical Memory | 485,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 69,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55,90 Gb Total Space | 43,62 Gb Free Space | 78,03% Space Free | Partition Type: NTFS
Drive D: | 55,89 Gb Total Space | 12,67 Gb Free Space | 22,67% Space Free | Partition Type: NTFS
Drive F: | 4,00 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: SCORPIO-SINGLE | User Name: scorpio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Games\Counter-Strike\hl.exe" = D:\Games\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe" = C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service -- ()
"D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe" = D:\Games\Steam\SteamApps\scorpio739\team fortress 2\hl2.exe:*:Enabled:hl2 -- ()
"D:\Games\Valve\hltv.exe" = D:\Games\Valve\hltv.exe:*:Enabled:HLTV Launcher
"D:\Games\Crashday\Crashday.exe" = D:\Games\Crashday\Crashday.exe:*:Enabled:Crashday -- ()
"D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE" = D:\Games\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE:*:Enabled:Worms 4 Mayhem -- (Team 17 Ltd)
"D:\Games\Counter-Strike 1.6\hl.exe" = D:\Games\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\AVG\AVG10\avgdiagex.exe" = C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostika AVG 2011 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgnsx.exe" = C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Webový štít -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgmfapx.exe" = C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Inštalátor produktu AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgam.exe" = C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:AVG Alert Manager -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgemcx.exe" = C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Obecná kontrola pošty -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 24
"{2881063B-C58F-49EB-97FD-8BF58EC580F9}" = Nitro PDF Reader
"{2C7C0033-0EB0-4271-853D-5A4ED6825641}_is1" = Ford Racing 2
"{350C97C4-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C}" = Worms 4 Mayhem
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{57030680-6253-4281-A3F3-83B090BD932B}_is1" = Crashday
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{95120000-00AF-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Czech)
"{99A9A797-963E-4D94-802A-0EB97BED288A}_is1" = Ford Racing 3
"{A276502A-8979-44FB-8090-90CF72F22ABC}" = AVG 2011
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A979B2D8-E3EE-4523-A26C-4AF0A6809280}" = Sniper Elite
"{AC76BA86-7AD7-1029-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Czech
"{BD71ADC0-0616-4EC2-A43A-8A7EBF3A85E6}" = Tygrova výprava
"{CBC85F2E-1981-4C55-9418-908D08D2C6E8}" = OLYMPUS Master 2
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D7A6C517-11F2-419F-B5BB-27772B939698}" = NvMixer
"{E35AF511-B618-4D02-B559-0F2147341D3B}" = AVG 2011
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6 (6.3.1.2614)
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Any Video Converter_is1" = Any Video Converter 3.1.8
"AVG" = AVG 2011
"conduitEngine" = Conduit Engine
"Counter-Strike" = Counter-Strike 1.0
"Counter-Strike 1.6" = Counter-Strike 1.6
"DAEMON Tools Lite" = DAEMON Tools Lite
"DivX Setup.divx.com" = DivX Setup
"EASEUS Partition Manager Home Edition_is1" = EASEUS Partition Manager 3.0 Home Edition
"ENTERPRISE" = Microsoft Office Enterprise 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{BD71ADC0-0616-4EC2-A43A-8A7EBF3A85E6}" = Tygrova výprava
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.8.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Nero - Burning Rom!UninstallKey" = Nero 6 Enterprise Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"NVIDIA Drivers" = NVIDIA Drivers
"PC Wizard 2010_is1" = PC Wizard 2010.1.94
"Scorpions WinCheater 2.07 (s databází 117)_is1" = Scorpions WinCheater
"Steam App 220" = Half-Life 2
"Steam App 400" = Portal
"Steam App 440" = Team Fortress 2
"Update Service" = Sony Ericsson Update Service
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows XP Service Pack" = Windows XP Service Pack 3

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Family Farm" = Family Farm

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 23. 2. 2011 10:34:13 | Computer Name = SCORPIO-SINGLE | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 25. 2. 2011 9:55:32 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25. 2. 2011 9:55:38 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25. 2. 2011 9:57:34 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.6.0.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 28. 2. 2011 10:19:34 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace igi.exe, verze 0.0.0.0, chybující modul igi.exe,
verze 0.0.0.0, adresa chyby 0x0010daf7.

Error - 1. 3. 2011 11:00:46 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace igi.exe, verze 0.0.0.0, chybující modul igi.exe,
verze 0.0.0.0, adresa chyby 0x0010dba5.

Error - 2. 3. 2011 10:24:35 | Computer Name = SCORPIO-SINGLE | Source = LoadPerf | ID = 3006
Description = Nelze číst řetězce čítače výkonu ID jazyka 01b. Stav Win32 vrácený
voláním je v první hodnotě DWORD v datové oblasti.

Error - 4. 3. 2011 8:01:00 | Computer Name = SCORPIO-SINGLE | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace IGI.exe, verze 0.0.0.0, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 7. 3. 2011 10:28:20 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.5730.13, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x6e016646.

Error - 8. 3. 2011 10:27:29 | Computer Name = SCORPIO-SINGLE | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.5730.13, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x6e016646.

[ System Events ]
Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842784
Description = Závislá symbolická adresa Microsoft.VC80.ATL nebyla nalezena a poslední
chyba byla Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly pro Microsoft.VC80.ATL se nezdařila. Referenční
chybová zpráva: Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Generate Activation Context pro C:\Program Files\DivX\DivX Transcode
Engine\gzHF330.ddc se nezdařila. Referenční chybová zpráva: Operace byla dokončena
úspěšně. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842784
Description = Závislá symbolická adresa Microsoft.VC80.ATL nebyla nalezena a poslední
chyba byla Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Resolve Partial Assembly pro Microsoft.VC80.ATL se nezdařila. Referenční
chybová zpráva: Sestavení určené odkazem není v systému nainstalováno. .

Error - 17. 3. 2011 14:00:36 | Computer Name = SCORPIO-SINGLE | Source = SideBySide | ID = 16842811
Description = Generate Activation Context pro C:\Program Files\DivX\DivX Transcode
Engine\mtw178.ddc se nezdařila. Referenční chybová zpráva: Operace byla dokončena
úspěšně. .

Error - 21. 3. 2011 15:11:06 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7038
Description = Přihlášení služby RemoteRegistry jako uživatel NT AUTHORITY\LocalService
se se současně nakonfigurovaným heslem nezdařilo. Došlo k následující chybě: %%5

Zkontrolujte
konfiguraci služby pomocí modulu snap-in Služby v konzole Microsoft Management Console
(MMC).

Error - 21. 3. 2011 15:11:06 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7000
Description = Služba Vzdálený registr neuspěla při spuštění v důsledku následující
chyby: %%1069

Error - 26. 3. 2011 15:30:33 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7038
Description = Přihlášení služby SSDPSRV jako uživatel NT AUTHORITY\LocalService
se se současně nakonfigurovaným heslem nezdařilo. Došlo k následující chybě: %%5 Zkontrolujte
konfiguraci služby pomocí modulu snap-in Služby v konzole Microsoft Management Console
(MMC).

Error - 26. 3. 2011 15:30:33 | Computer Name = SCORPIO-SINGLE | Source = Service Control Manager | ID = 7000
Description = Služba Služba rozpoznávání pomocí protokolu SSDP neuspěla při spuštění
v důsledku následující chyby: %%1069

< End of report >

Prosím Vás, zkopírujte ten zelený text co je o pár topiců víš do políčka v OTL a pak dejte run fix.

VIRY.CZ

sekanie, zamŕzanie pc

sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc

Re: sekanie, zamŕzanie pc