Logfile of random's system information tool 1.09 (written by random/random)
Run by Kuba at 2011-09-19 16:11:01
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 9 GB (12%) free of 76 GB
Total RAM: 2046 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:11, on 2011-09-19
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\Kuba.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CiSvc - Unknown owner - C:\Windows\system32\cisvc.exe (file missing)
O23 - Service: ClipSrv - Unknown owner - C:\Windows\system32\clipsrv.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: UPS - Unknown owner - C:\Windows\System32\ups.exe (file missing)
--
End of file - 10469 bytes
======Scheduled tasks folder======
C:\Windows\tasks\User_Feed_Synchronization-{32AEDB3F-F384-4079-B2F5-A8475E0FECBA}.job
C:\Windows\tasks\User_Feed_Synchronization-{4BCD466E-A3ED-4F95-9C2F-76D216681E20}.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{800b5000-a755-47e1-992b-48a1c1357f07}:1.3.1, {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}:6.0.18, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {27E679CC-6AAB-4B2A-BB87-096FE4178464}:1.0, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, wrc@avast.com:6.0.1289, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.3.1&q="
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Program Files\Mozilla Firefox\extensions\
{27E679CC-6AAB-4B2A-BB87-096FE4178464}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
npdevalvr.xpt
npwachk.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIBitCometAgent.xpt
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npBitCometAgent.dll
npdeployJava1.dll
npdevalvr.dll
npDivxPlayerPlugin.dll
npnul32.dll
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
nsIDivxPlayerPlugin.xpt
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\
staged-xpis
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{20a82645-c095-46ed-80e3-08825760534b}
{800b5000-a755-47e1-992b-48a1c1357f07}
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-16.xml
icqplugin-17.xml
icqplugin-18.xml
icqplugin-19.xml
icqplugin-2.xml
icqplugin-20.xml
icqplugin-21.xml
icqplugin-22.xml
icqplugin-23.xml
icqplugin-24.xml
icqplugin-25.xml
icqplugin-26.xml
icqplugin-27.xml
icqplugin-28.xml
icqplugin-29.xml
icqplugin-3.xml
icqplugin-30.xml
icqplugin-31.xml
icqplugin-32.xml
icqplugin-33.xml
icqplugin-34.xml
icqplugin-35.xml
icqplugin-36.xml
icqplugin-37.xml
icqplugin-38.xml
icqplugin-39.xml
icqplugin-4.xml
icqplugin-40.xml
icqplugin-41.xml
icqplugin-42.xml
icqplugin-43.xml
icqplugin-44.xml
icqplugin-45.xml
icqplugin-46.xml
icqplugin-47.xml
icqplugin-48.xml
icqplugin-49.xml
icqplugin-5.xml
icqplugin-50.xml
icqplugin-51.xml
icqplugin-52.xml
icqplugin-53.xml
icqplugin-54.xml
icqplugin-55.xml
icqplugin-56.xml
icqplugin-57.xml
icqplugin-58.xml
icqplugin-59.xml
icqplugin-6.xml
icqplugin-60.xml
icqplugin-61.xml
icqplugin-62.xml
icqplugin-63.xml
icqplugin-64.xml
icqplugin-65.xml
icqplugin-66.xml
icqplugin-67.xml
icqplugin-68.xml
icqplugin-69.xml
icqplugin-7.xml
icqplugin-70.xml
icqplugin-71.xml
icqplugin-72.xml
icqplugin-73.xml
icqplugin-74.xml
icqplugin-75.xml
icqplugin-76.xml
icqplugin-77.xml
icqplugin-78.xml
icqplugin-79.xml
icqplugin-8.xml
icqplugin-80.xml
icqplugin-81.xml
icqplugin-82.xml
icqplugin-83.xml
icqplugin-84.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
stahujcz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2009-01-14 520192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-09-27 1250696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-21 71192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-02-15 4390912]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"PowerForPhone"=C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-16 778240]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"WPCUMI"=C:\Windows\system32\WpcUmi.exe [2006-11-02 176128]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"InCD"=C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2007-09-26 1057064]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-09-06 3722416]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-01-12 37888]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe /runcleanupscript []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-07-05 421888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"ICQ"=C:\Program Files\ICQ7.2\ICQ.exe [2011-01-05 133432]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe []
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2007-09-26 1057064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\Windows\system32\stobject.dll [2009-04-11 586752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=MSh263.drv
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=serwvdrv.dll
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.mjpg"=pvmjpg30.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
======List of files/folders created in the last 1 month======
2011-09-15 23:00:34 ----D---- C:\Program Files\Bonjour
2011-09-15 22:57:57 ----D---- C:\Program Files\QuickTime
2011-09-15 19:54:13 ----D---- C:\Program Files\Apple Software Update
2011-09-04 18:00:41 ----D---- C:\Program Files\CDex
2011-08-29 14:38:08 ----D---- C:\Program Files\Autodesk
======List of files/folders modified in the last 1 month======
2011-09-19 16:11:07 ----D---- C:\Windows\temp
2011-09-19 16:11:07 ----D---- C:\Program Files\trend micro
2011-09-19 13:49:50 ----SHD---- C:\System Volume Information
2011-09-19 12:49:46 ----D---- C:\Users\Kuba\AppData\Roaming\Apple Computer
2011-09-19 09:22:07 ----A---- C:\Windows\BRWMARK.INI
2011-09-19 09:15:58 ----RD---- C:\Program Files
2011-09-19 09:12:09 ----D---- C:\Program Files\TomTom HOME 2
2011-09-19 09:11:32 ----SHD---- C:\Windows\Installer
2011-09-19 08:40:34 ----D---- C:\Windows\System32
2011-09-19 08:40:34 ----D---- C:\Windows\inf
2011-09-19 08:40:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-19 08:35:11 ----D---- C:\Windows\system32\drivers
2011-09-15 23:02:05 ----D---- C:\Program Files\Safari
2011-09-15 22:53:31 ----D---- C:\SPDISK
2011-09-15 19:54:17 ----D---- C:\Windows\system32\Tasks
2011-09-15 19:43:05 ----A---- C:\Windows\system32\acovcnt.exe
2011-09-14 20:55:56 ----D---- C:\Program Files\QueryExplorer
2011-09-14 20:26:37 ----D---- C:\Windows
2011-09-06 22:45:29 ----A---- C:\Windows\system32\aswBoot.exe
2011-09-04 18:02:22 ----D---- C:\Temp
2011-09-04 18:01:49 ----D---- C:\Windows\winsxs
2011-08-29 14:37:41 ----D---- C:\Windows\Prefetch
2011-08-29 13:54:53 ----D---- C:\Windows\Minidump
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 InCDPass;InCDPass; C:\Windows\system32\drivers\InCDPass.sys [2007-09-26 36776]
R1 incdrm;InCD Reader; C:\Windows\system32\drivers\InCDRm.sys [2007-09-26 38440]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-02-14 1740904]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R4 InCDfs;InCD File System; C:\Windows\system32\drivers\InCDFs.sys [2007-09-26 118952]
S1 PCIDump;PCIDump; C:\Windows\system32\drivers\PCIDump.sys []
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 Bcim;Bandwidth Controller kernel component; C:\Windows\system32\DRIVERS\bcim.sys []
S3 BthAudioHF;BthAudioHF Service; C:\Windows\system32\DRIVERS\BthAudioHF.sys [2007-08-01 29184]
S3 bthav;Bluetooth AV Profile; C:\Windows\system32\drivers\bthav.sys [2007-08-01 36352]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2007-08-01 12800]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 catchme;catchme; \??\C:\Users\Kuba\AppData\Local\Temp\catchme.sys []
S3 DMusic;DMusic; C:\Windows\system32\drivers\DMusic.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2008-02-16 25280]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-09-06 44768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-04-06 349472]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 HFGService;Handsfree Headset Service; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
S2 ERSvc;ERSvc; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S2 helpsvc;helpsvc; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S2 srservice;srservice; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 CiSvc;CiSvc; C:\Windows\system32\cisvc.exe []
S3 ClipSrv;ClipSrv; C:\Windows\system32\clipsrv.exe []
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 UPS;UPS; C:\Windows\System32\ups.exe []
S4 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2007-09-26 1554728]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu loglistu. Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Zdravim a pekny den preji 
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start adp3132.sys AGP440.sys ahcix86.sys ahcix86s.sys atapi.sys autochk.exe cdrom.sys cngaudit.dll cryptsvc.dll eNetHook.dll eventlog.dll explorer.exe hal.dll Changer.sys iaStor.sys iastorv.sys IdeChnDr.sys isapnp.sys JakNDis.sys KR10N.sys logevent.dll lsass.exe mv61xx.sys ndis.sys netlogon.dll ntelogon.dll nvata.sys nvatabus.sys nvgts.sys nvraid.sys nvrd32.sys nvstor.sys nvstor32.sys scecli.dll sceclt.dll smss.exe svchost.exe symmpi.sys tcpip.sys userinit.exe vaxscsi.sys viamraid.sys viasraid.sys ViPrt.sys winlogon.exe ws2_32.dll /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s type c:\boot.ini >> test.txt /c %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivní kontrolu loglistu. Děkuji
OTL Extras logfile created on: 2011-09-19 18:44:51 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Kuba\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd
2.00 Gb Total Physical Memory | 1.07 Gb Available Physical Memory | 53.63% Memory free
3.94 Gb Paging File | 2.77 Gb Available in Paging File | 70.34% Paging File free
Paging file location(s): c:\pagefile.sys 2046 3069 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 8.18 Gb Free Space | 10.97% Space Free | Partition Type: NTFS
Drive D: | 67.69 Gb Total Space | 39.88 Gb Free Space | 58.92% Space Free | Partition Type: NTFS
Computer Name: KUBA-PC | User Name: Kuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- FirefoxURL
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- Reg Error: Key error. File not found
.com [@ = ComFile] -- Reg Error: Key error. File not found
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.pif [@ = piffile] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{031CD739-92A4-4883-A2BC-38CCC69A3F83}" = lport=2869 | protocol=6 | dir=in | app=system |
"{28CBA092-D935-411F-AE78-455128F5E80C}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{2A93CECC-EEEA-48E8-A639-6CC1A61E13EF}" = lport=17252 | protocol=17 | dir=in | name=bitcomet 17252 udp |
"{2C951BF2-2B40-4EC7-A0F1-E901F0D2D4AD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2DA55690-F6E8-4736-ABE5-60CF273EE5AD}" = rport=139 | protocol=6 | dir=out | app=system |
"{35B5FD00-56EA-443F-B386-D8F449C25751}" = rport=138 | protocol=17 | dir=out | app=system |
"{37912291-99AD-483F-8EEC-469BFEBDC376}" = lport=445 | protocol=6 | dir=in | app=system |
"{4171915D-CE6A-4EBA-A763-2F9C1F5B860C}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{41C19274-D2CB-4E1D-88AB-07F8DD407F57}" = lport=17252 | protocol=6 | dir=in | name=bitcomet 17252 tcp |
"{41EE245E-9C89-4111-BF10-5AA964EA7F2B}" = rport=2869 | protocol=6 | dir=out | app=system |
"{429723FB-688E-4B35-9963-926670D8CD13}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{50990A14-F75A-40C3-BC25-93332C477AE5}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{588ADBDA-DA75-4F46-9948-54C7ABFF2CD5}" = lport=137 | protocol=17 | dir=in | app=system |
"{6F391CA2-A66D-44BF-BFCA-8BC0C74BB9A1}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{6F71F3F9-B175-4942-B70D-3E4BDE9BB921}" = rport=137 | protocol=17 | dir=out | app=system |
"{72E0EDBC-77FF-4DB8-819C-290BDE580B5F}" = lport=138 | protocol=17 | dir=in | app=system |
"{74329B5A-445B-4516-8F8E-D71C2427CB7B}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7797F2A7-3E2D-4AD7-86E4-C247F2794302}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{82F35C95-42EA-4E42-85BD-33E4D0D1C1E3}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8ECD4890-0607-432B-BCDB-CB51E31C0F8C}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{ACB8BCA6-E6DA-402F-8CDB-8B6AB6C8F8AB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ADE18741-33B4-4D7B-93B9-EF2D7BE9BE62}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B10A1326-6348-466B-931B-D0280EECE8CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{B33038CF-223A-4C21-B3E1-F5F4580CA01F}" = lport=139 | protocol=6 | dir=in | app=system |
"{CF7750BF-AE40-4189-A43E-375846D6AEEF}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{D74D68C6-9757-45DD-A266-371B1E437889}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D8EC3A82-B7F9-463B-A85E-B99E03DC5446}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F3DA57CC-CC1A-41BE-B3A5-B6051B92D8C0}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{FE079BCE-1F7B-4291-B4E8-3008C0DE2AF6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0134C785-F8FD-4C2A-B372-95CED11E1A6D}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{0A6835F3-0E3C-4A73-A0E1-E1CD64427CA9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{118DBF02-5327-4878-A96F-E8CCF494500F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1241B2FC-33E5-4B66-B928-253A88C0210D}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{138A2C4C-A50A-4703-B955-65DE7BD53AD6}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{15A05C5D-38E4-430D-BFCD-3B0D0356B284}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{19EFA09E-A352-4128-8D14-4FDD7C21E8CD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{299536D7-81FD-405A-9A4B-62196992E1B0}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3299E592-D0BA-4A7C-8576-5D7A9E419C27}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{41C56AA6-EAF0-41FC-B71B-33F5560D5D0C}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{4233E7AE-5CB9-48F8-AC81-2ABF32AEFB18}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{522B70B4-57B2-4668-A077-EB33208FC3E0}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{52E4D4C9-A928-43FF-91DB-1FC2BBAABD57}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{58BCA1C1-60C7-4A3D-AD0F-B95F3077BB4B}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{59940E9A-64D8-4C36-A835-54F48454C37B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{6678CCBB-EA9E-4727-AE35-CD82B2EE75D2}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{685C4537-D48D-4D7A-B9A6-40CA500413B5}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{6B4DB654-D291-4E5D-8BAB-50310251FB20}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{6FD516FF-5E50-47AF-A925-8045889E9311}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{74DB9B64-4F59-412E-80D1-42A65D712768}" = protocol=17 | dir=in | app=c:\program files\sierra\fear\fear.exe |
"{7A2A277C-485B-4868-B48A-3F85251EB6CB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7AC68DC7-1572-49A9-B296-03FC98FFE69F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{7FCB779A-AF97-4665-A4D9-1B456B7DF0D9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{80831620-1A45-4E8C-903A-98DBEA926CEE}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{842243CA-EB00-4684-9D00-DBCEA7B649EC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{84608B3E-AC12-442F-83B6-BFFF0BDECBBE}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{91C951D6-A93B-4294-A00B-E42D2027DE10}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{920DB561-1391-4CB3-9DEC-DD44348FA93C}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{9DB53C8F-CD70-4ADB-AF1C-F6F5A4442513}" = protocol=6 | dir=in | app=c:\program files\ea games\the battle for middle-earth (tm)\game.dat |
"{A30903F4-5C02-4BBC-B3CE-F4FE5B6540FF}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{B24A0D90-A02F-4CFB-B26C-3C69645442D9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{B34AB8C7-4981-4536-AAA1-7C97BD218C1D}" = protocol=17 | dir=in | app=c:\program files\ea games\the battle for middle-earth (tm)\game.dat |
"{BD07E4C5-6235-40A8-82D6-12966EC700C7}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{C81D69AF-E3AB-489E-8AFA-BF124C355C7C}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{CD8DBE52-EC3E-449B-B01D-F6606288A5F4}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{CE18EA78-434B-4A5F-B409-598C18493665}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{CF0EE7B9-F7B9-4CB8-A692-27467447AAFF}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{D434F370-B54B-4579-A7DF-03459E24856B}" = protocol=6 | dir=in | app=c:\program files\sierra\fear\fear.exe |
"{D6C13842-60EE-40D4-A48B-601A3C3AD05D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D6DFCDFB-4908-4DD4-9BD6-61B3DC18DA25}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{DCAE20F6-5428-408F-B64D-07B40C027F0C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DE1F7007-FB8F-4CAA-A143-880B95B1CFC0}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E2242DF2-6816-4BC9-A7FA-0042466E4B18}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{EA7C22C6-86EE-457D-A909-065D78E76A4E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{F54DF46F-38EB-4F63-BFAE-C58E059D6DF0}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{FB14D7DA-8861-4917-AF38-86EA1FC4C3D6}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{FE9CC662-3CCB-4EAF-B332-1AA2604B5C1B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{FF99823C-4980-4C12-A880-E86B98D00669}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"TCP Query User{1F1158F3-CF50-48B0-A597-7A4615C285E6}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{71A0D312-E9EC-4225-9383-71E89E10FDFE}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=6 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"TCP Query User{83C02374-92BF-41AB-9024-DFF5B859C4C6}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{8911768A-F7D9-4E5A-9E2A-D176DBC577CF}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{9094C9D2-D41F-4C75-BC03-CC5E41ED082D}C:\program files\mmtoolz\internettv\internettv.exe" = protocol=6 | dir=in | app=c:\program files\mmtoolz\internettv\internettv.exe |
"TCP Query User{99D12CF6-306B-472D-B986-CB2CFC1D39CF}C:\program files\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"TCP Query User{C00ED664-7A4E-4BF1-9385-BB0E551CA5EB}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{C04FC444-CA41-4F7D-A6DE-737663F4A5BA}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=6 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"TCP Query User{C3715380-DF90-45B7-94EA-484349BF93E0}C:\program files\swapper\swapper.exe" = protocol=6 | dir=in | app=c:\program files\swapper\swapper.exe |
"TCP Query User{EFA5D78C-7D0F-43F6-831C-F056A6E76724}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F38A4735-52EC-416D-B5B7-9A3993D46239}C:\windows\ehome\ehexthost.exe" = protocol=6 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"TCP Query User{F4D6038B-F019-4CDF-8D3C-24EC117D2F88}C:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe" = protocol=6 | dir=in | app=c:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe |
"TCP Query User{F6672C15-7153-4A2D-B9AD-EA8592018A88}C:\program files\safari\safari.exe" = protocol=6 | dir=in | app=c:\program files\safari\safari.exe |
"TCP Query User{FBD38A4F-A615-4708-8C35-CEC38A87D21A}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{00083E20-50D0-4DEA-A5F1-18724D1E8445}C:\program files\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"UDP Query User{003B1F0D-AC7F-46F8-8A0B-B6CBBEFA04CA}C:\program files\safari\safari.exe" = protocol=17 | dir=in | app=c:\program files\safari\safari.exe |
"UDP Query User{2A54385B-476D-4AF7-AE73-A7A2E5C65F8C}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3C78DC87-8C55-47FC-AD63-95C66C9FA2F2}C:\program files\swapper\swapper.exe" = protocol=17 | dir=in | app=c:\program files\swapper\swapper.exe |
"UDP Query User{3E41211D-FB88-4CE2-AB39-A724172B889D}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=17 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"UDP Query User{452322A8-E0EF-4BF5-B1B1-DE6203F16288}C:\windows\ehome\ehexthost.exe" = protocol=17 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"UDP Query User{511DED97-06E8-4A90-9B8C-D28847D5E4C5}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{7D91FF30-1FAB-4F89-9DE4-8074F74DCC76}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=17 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"UDP Query User{80B084D9-60B2-4BE7-983A-AA513E81BC3A}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{963C0512-5791-4933-A4B6-3F0E06AE1EAD}C:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe" = protocol=17 | dir=in | app=c:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe |
"UDP Query User{BB40091B-D38D-43CD-A583-BF0BE32360D0}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{C5332FCD-C287-43FE-AC95-930EDF211227}C:\program files\mmtoolz\internettv\internettv.exe" = protocol=17 | dir=in | app=c:\program files\mmtoolz\internettv\internettv.exe |
"UDP Query User{F26F8BF1-02A4-4A12-9F2D-7336D6729AE5}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{F2CF9005-7EA1-4D9A-AF52-0B32CDA2BBCA}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 23
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{735619D4-B42A-437A-958C-199BFCAEDB38}" = Safari
"{7516254D-7F98-49DD-8209-5D2208BD1029}" = Nero 7 Essentials
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{799A3CB8-DCD5-4B48-ACAD-4D5FABCC7B21}" = AVer MediaCenter
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0408-0000-0000000FF1CE}" = Microsoft Office Access MUI (Greek) 2007
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0418-0000-0000000FF1CE}" = Microsoft Office Access MUI (Romanian) 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0408-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Greek) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0418-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Romanian) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0408-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Greek) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0418-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Romanian) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0408-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Greek) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0418-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Romanian) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0408-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Greek) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0418-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Romanian) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0408-0000-0000000FF1CE}" = Microsoft Office Word MUI (Greek) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0418-0000-0000000FF1CE}" = Microsoft Office Word MUI (Romanian) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0408-0000-0000000FF1CE}" = Microsoft Office Proof (Greek) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-0418-0000-0000000FF1CE}" = Microsoft Office Proof (Romanian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0408-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Greek) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0418-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Romanian) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC76BA86-7AD7-1029-7B44-AA0000000001}" = Adobe Reader X - Czech
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{FC87BEA8-5582-476C-A754-41F3A9D976D4}" = AVerTV
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AmoK DVD Shrinker" = AmoK DVD Shrinker 1.3
"avast" = avast! Free Antivirus
"AVerMedia M039 USB Hybrid DVB-T" = AVerMedia M039 USB Hybrid DVB-T 1.3.0.67
"CDex" = CDex - Open Source Digital Audio CD Extractor
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DevalVR for Netscape" = DevalVR plugin for Netscape and compatible browsers
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX Setup
"DTweak_is1" = DTweak
"DVD Shrink_is1" = DVD Shrink 3.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ICQToolbar" = ICQ Toolbar
"InstallShield_{799A3CB8-DCD5-4B48-ACAD-4D5FABCC7B21}" = AVer MediaCenter
"InstallShield_{FC87BEA8-5582-476C-A754-41F3A9D976D4}" = AVerTV
"KaM - The Peasants Rebellion" = KaM - The Peasants Rebellion
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"Landi 2003 - jazykový kurz" = Landi 2003 - jazykový kurz
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"PDFTools_is1" = PDFTools Version 1.2 (09/28/2006)
"QueryExplorer" = QueryExplorer 1.0 build 145 powered by FIRST SEARCHBAR
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"Tri_Deploy_0" = Tri-Peaks Solitaire To Go
"USB2.0 1.3M WebCam" = USB2.0 1.3M WebCam
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 2009-03-18 14:07:32 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-03-23 11:37:35 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-03-29 10:39:17 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-05-18 15:06:35 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-05-22 05:03:56 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-08-19 12:26:42 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-09-22 12:32:47 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-10-11 14:28:43 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2010-01-21 16:44:58 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2010-01-29 01:33:09 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Kuba\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd
2.00 Gb Total Physical Memory | 1.07 Gb Available Physical Memory | 53.63% Memory free
3.94 Gb Paging File | 2.77 Gb Available in Paging File | 70.34% Paging File free
Paging file location(s): c:\pagefile.sys 2046 3069 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 8.18 Gb Free Space | 10.97% Space Free | Partition Type: NTFS
Drive D: | 67.69 Gb Total Space | 39.88 Gb Free Space | 58.92% Space Free | Partition Type: NTFS
Computer Name: KUBA-PC | User Name: Kuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- FirefoxURL
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- Reg Error: Key error. File not found
.com [@ = ComFile] -- Reg Error: Key error. File not found
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.pif [@ = piffile] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{031CD739-92A4-4883-A2BC-38CCC69A3F83}" = lport=2869 | protocol=6 | dir=in | app=system |
"{28CBA092-D935-411F-AE78-455128F5E80C}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{2A93CECC-EEEA-48E8-A639-6CC1A61E13EF}" = lport=17252 | protocol=17 | dir=in | name=bitcomet 17252 udp |
"{2C951BF2-2B40-4EC7-A0F1-E901F0D2D4AD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2DA55690-F6E8-4736-ABE5-60CF273EE5AD}" = rport=139 | protocol=6 | dir=out | app=system |
"{35B5FD00-56EA-443F-B386-D8F449C25751}" = rport=138 | protocol=17 | dir=out | app=system |
"{37912291-99AD-483F-8EEC-469BFEBDC376}" = lport=445 | protocol=6 | dir=in | app=system |
"{4171915D-CE6A-4EBA-A763-2F9C1F5B860C}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{41C19274-D2CB-4E1D-88AB-07F8DD407F57}" = lport=17252 | protocol=6 | dir=in | name=bitcomet 17252 tcp |
"{41EE245E-9C89-4111-BF10-5AA964EA7F2B}" = rport=2869 | protocol=6 | dir=out | app=system |
"{429723FB-688E-4B35-9963-926670D8CD13}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{50990A14-F75A-40C3-BC25-93332C477AE5}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{588ADBDA-DA75-4F46-9948-54C7ABFF2CD5}" = lport=137 | protocol=17 | dir=in | app=system |
"{6F391CA2-A66D-44BF-BFCA-8BC0C74BB9A1}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{6F71F3F9-B175-4942-B70D-3E4BDE9BB921}" = rport=137 | protocol=17 | dir=out | app=system |
"{72E0EDBC-77FF-4DB8-819C-290BDE580B5F}" = lport=138 | protocol=17 | dir=in | app=system |
"{74329B5A-445B-4516-8F8E-D71C2427CB7B}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7797F2A7-3E2D-4AD7-86E4-C247F2794302}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{82F35C95-42EA-4E42-85BD-33E4D0D1C1E3}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8ECD4890-0607-432B-BCDB-CB51E31C0F8C}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{ACB8BCA6-E6DA-402F-8CDB-8B6AB6C8F8AB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ADE18741-33B4-4D7B-93B9-EF2D7BE9BE62}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B10A1326-6348-466B-931B-D0280EECE8CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{B33038CF-223A-4C21-B3E1-F5F4580CA01F}" = lport=139 | protocol=6 | dir=in | app=system |
"{CF7750BF-AE40-4189-A43E-375846D6AEEF}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{D74D68C6-9757-45DD-A266-371B1E437889}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D8EC3A82-B7F9-463B-A85E-B99E03DC5446}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F3DA57CC-CC1A-41BE-B3A5-B6051B92D8C0}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{FE079BCE-1F7B-4291-B4E8-3008C0DE2AF6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0134C785-F8FD-4C2A-B372-95CED11E1A6D}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{0A6835F3-0E3C-4A73-A0E1-E1CD64427CA9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{118DBF02-5327-4878-A96F-E8CCF494500F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1241B2FC-33E5-4B66-B928-253A88C0210D}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{138A2C4C-A50A-4703-B955-65DE7BD53AD6}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{15A05C5D-38E4-430D-BFCD-3B0D0356B284}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{19EFA09E-A352-4128-8D14-4FDD7C21E8CD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{299536D7-81FD-405A-9A4B-62196992E1B0}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3299E592-D0BA-4A7C-8576-5D7A9E419C27}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{41C56AA6-EAF0-41FC-B71B-33F5560D5D0C}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{4233E7AE-5CB9-48F8-AC81-2ABF32AEFB18}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{522B70B4-57B2-4668-A077-EB33208FC3E0}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{52E4D4C9-A928-43FF-91DB-1FC2BBAABD57}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{58BCA1C1-60C7-4A3D-AD0F-B95F3077BB4B}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{59940E9A-64D8-4C36-A835-54F48454C37B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{6678CCBB-EA9E-4727-AE35-CD82B2EE75D2}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{685C4537-D48D-4D7A-B9A6-40CA500413B5}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{6B4DB654-D291-4E5D-8BAB-50310251FB20}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{6FD516FF-5E50-47AF-A925-8045889E9311}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{74DB9B64-4F59-412E-80D1-42A65D712768}" = protocol=17 | dir=in | app=c:\program files\sierra\fear\fear.exe |
"{7A2A277C-485B-4868-B48A-3F85251EB6CB}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{7AC68DC7-1572-49A9-B296-03FC98FFE69F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{7FCB779A-AF97-4665-A4D9-1B456B7DF0D9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{80831620-1A45-4E8C-903A-98DBEA926CEE}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{842243CA-EB00-4684-9D00-DBCEA7B649EC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{84608B3E-AC12-442F-83B6-BFFF0BDECBBE}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{91C951D6-A93B-4294-A00B-E42D2027DE10}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{920DB561-1391-4CB3-9DEC-DD44348FA93C}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{9DB53C8F-CD70-4ADB-AF1C-F6F5A4442513}" = protocol=6 | dir=in | app=c:\program files\ea games\the battle for middle-earth (tm)\game.dat |
"{A30903F4-5C02-4BBC-B3CE-F4FE5B6540FF}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{B24A0D90-A02F-4CFB-B26C-3C69645442D9}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{B34AB8C7-4981-4536-AAA1-7C97BD218C1D}" = protocol=17 | dir=in | app=c:\program files\ea games\the battle for middle-earth (tm)\game.dat |
"{BD07E4C5-6235-40A8-82D6-12966EC700C7}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{C81D69AF-E3AB-489E-8AFA-BF124C355C7C}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{CD8DBE52-EC3E-449B-B01D-F6606288A5F4}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{CE18EA78-434B-4A5F-B409-598C18493665}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{CF0EE7B9-F7B9-4CB8-A692-27467447AAFF}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{D434F370-B54B-4579-A7DF-03459E24856B}" = protocol=6 | dir=in | app=c:\program files\sierra\fear\fear.exe |
"{D6C13842-60EE-40D4-A48B-601A3C3AD05D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D6DFCDFB-4908-4DD4-9BD6-61B3DC18DA25}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{DCAE20F6-5428-408F-B64D-07B40C027F0C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DE1F7007-FB8F-4CAA-A143-880B95B1CFC0}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E2242DF2-6816-4BC9-A7FA-0042466E4B18}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{EA7C22C6-86EE-457D-A909-065D78E76A4E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{F54DF46F-38EB-4F63-BFAE-C58E059D6DF0}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{FB14D7DA-8861-4917-AF38-86EA1FC4C3D6}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{FE9CC662-3CCB-4EAF-B332-1AA2604B5C1B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{FF99823C-4980-4C12-A880-E86B98D00669}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"TCP Query User{1F1158F3-CF50-48B0-A597-7A4615C285E6}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{71A0D312-E9EC-4225-9383-71E89E10FDFE}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=6 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"TCP Query User{83C02374-92BF-41AB-9024-DFF5B859C4C6}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{8911768A-F7D9-4E5A-9E2A-D176DBC577CF}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{9094C9D2-D41F-4C75-BC03-CC5E41ED082D}C:\program files\mmtoolz\internettv\internettv.exe" = protocol=6 | dir=in | app=c:\program files\mmtoolz\internettv\internettv.exe |
"TCP Query User{99D12CF6-306B-472D-B986-CB2CFC1D39CF}C:\program files\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"TCP Query User{C00ED664-7A4E-4BF1-9385-BB0E551CA5EB}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{C04FC444-CA41-4F7D-A6DE-737663F4A5BA}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=6 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"TCP Query User{C3715380-DF90-45B7-94EA-484349BF93E0}C:\program files\swapper\swapper.exe" = protocol=6 | dir=in | app=c:\program files\swapper\swapper.exe |
"TCP Query User{EFA5D78C-7D0F-43F6-831C-F056A6E76724}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F38A4735-52EC-416D-B5B7-9A3993D46239}C:\windows\ehome\ehexthost.exe" = protocol=6 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"TCP Query User{F4D6038B-F019-4CDF-8D3C-24EC117D2F88}C:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe" = protocol=6 | dir=in | app=c:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe |
"TCP Query User{F6672C15-7153-4A2D-B9AD-EA8592018A88}C:\program files\safari\safari.exe" = protocol=6 | dir=in | app=c:\program files\safari\safari.exe |
"TCP Query User{FBD38A4F-A615-4708-8C35-CEC38A87D21A}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{00083E20-50D0-4DEA-A5F1-18724D1E8445}C:\program files\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"UDP Query User{003B1F0D-AC7F-46F8-8A0B-B6CBBEFA04CA}C:\program files\safari\safari.exe" = protocol=17 | dir=in | app=c:\program files\safari\safari.exe |
"UDP Query User{2A54385B-476D-4AF7-AE73-A7A2E5C65F8C}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3C78DC87-8C55-47FC-AD63-95C66C9FA2F2}C:\program files\swapper\swapper.exe" = protocol=17 | dir=in | app=c:\program files\swapper\swapper.exe |
"UDP Query User{3E41211D-FB88-4CE2-AB39-A724172B889D}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=17 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"UDP Query User{452322A8-E0EF-4BF5-B1B1-DE6203F16288}C:\windows\ehome\ehexthost.exe" = protocol=17 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"UDP Query User{511DED97-06E8-4A90-9B8C-D28847D5E4C5}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{7D91FF30-1FAB-4F89-9DE4-8074F74DCC76}C:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe" = protocol=17 | dir=in | app=c:\users\kuba\desktop\nová složka (7)\sdc230\strongdc.exe |
"UDP Query User{80B084D9-60B2-4BE7-983A-AA513E81BC3A}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{963C0512-5791-4933-A4B6-3F0E06AE1EAD}C:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe" = protocol=17 | dir=in | app=c:\users\kuba\appdata\roaming\maxthon2\modules\mxdownloader\mxdownloadserver.exe |
"UDP Query User{BB40091B-D38D-43CD-A583-BF0BE32360D0}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{C5332FCD-C287-43FE-AC95-930EDF211227}C:\program files\mmtoolz\internettv\internettv.exe" = protocol=17 | dir=in | app=c:\program files\mmtoolz\internettv\internettv.exe |
"UDP Query User{F26F8BF1-02A4-4A12-9F2D-7336D6729AE5}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{F2CF9005-7EA1-4D9A-AF52-0B32CDA2BBCA}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 23
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{735619D4-B42A-437A-958C-199BFCAEDB38}" = Safari
"{7516254D-7F98-49DD-8209-5D2208BD1029}" = Nero 7 Essentials
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{799A3CB8-DCD5-4B48-ACAD-4D5FABCC7B21}" = AVer MediaCenter
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0408-0000-0000000FF1CE}" = Microsoft Office Access MUI (Greek) 2007
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0418-0000-0000000FF1CE}" = Microsoft Office Access MUI (Romanian) 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0408-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Greek) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0418-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Romanian) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0408-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Greek) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0418-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Romanian) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0408-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Greek) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0418-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Romanian) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0408-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Greek) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0418-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Romanian) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0408-0000-0000000FF1CE}" = Microsoft Office Word MUI (Greek) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0418-0000-0000000FF1CE}" = Microsoft Office Word MUI (Romanian) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0408-0000-0000000FF1CE}" = Microsoft Office Proof (Greek) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-0418-0000-0000000FF1CE}" = Microsoft Office Proof (Romanian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0408-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Greek) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0418-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Romanian) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC76BA86-7AD7-1029-7B44-AA0000000001}" = Adobe Reader X - Czech
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{FC87BEA8-5582-476C-A754-41F3A9D976D4}" = AVerTV
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AmoK DVD Shrinker" = AmoK DVD Shrinker 1.3
"avast" = avast! Free Antivirus
"AVerMedia M039 USB Hybrid DVB-T" = AVerMedia M039 USB Hybrid DVB-T 1.3.0.67
"CDex" = CDex - Open Source Digital Audio CD Extractor
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DevalVR for Netscape" = DevalVR plugin for Netscape and compatible browsers
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX Setup
"DTweak_is1" = DTweak
"DVD Shrink_is1" = DVD Shrink 3.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ICQToolbar" = ICQ Toolbar
"InstallShield_{799A3CB8-DCD5-4B48-ACAD-4D5FABCC7B21}" = AVer MediaCenter
"InstallShield_{FC87BEA8-5582-476C-A754-41F3A9D976D4}" = AVerTV
"KaM - The Peasants Rebellion" = KaM - The Peasants Rebellion
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"Landi 2003 - jazykový kurz" = Landi 2003 - jazykový kurz
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"PDFTools_is1" = PDFTools Version 1.2 (09/28/2006)
"QueryExplorer" = QueryExplorer 1.0 build 145 powered by FIRST SEARCHBAR
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"Tri_Deploy_0" = Tri-Peaks Solitaire To Go
"USB2.0 1.3M WebCam" = USB2.0 1.3M WebCam
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 2009-03-18 14:07:32 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-03-23 11:37:35 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-03-29 10:39:17 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-05-18 15:06:35 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-05-22 05:03:56 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-08-19 12:26:42 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-09-22 12:32:47 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2009-10-11 14:28:43 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2010-01-21 16:44:58 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
Error - 2010-01-29 01:33:09 | Computer Name = Kuba-PC | Source = avast! | ID = 33554522
Description =
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
Re: Prosím o preventivní kontrolu loglistu. Děkuji
OTL logfile created on: 2011-09-19 18:44:51 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Kuba\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd
2.00 Gb Total Physical Memory | 1.07 Gb Available Physical Memory | 53.63% Memory free
3.94 Gb Paging File | 2.77 Gb Available in Paging File | 70.34% Paging File free
Paging file location(s): c:\pagefile.sys 2046 3069 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 8.18 Gb Free Space | 10.97% Space Free | Partition Type: NTFS
Drive D: | 67.69 Gb Total Space | 39.88 Gb Free Space | 58.92% Space Free | Partition Type: NTFS
Computer Name: KUBA-PC | User Name: Kuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011-09-19 18:30:18 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
PRC - [2011-09-06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011-07-05 20:04:50 | 002,388,848 | ---- | M] (Apple Inc.) -- C:\Program Files\Safari\Safari.exe
PRC - [2011-06-24 22:56:24 | 000,014,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
PRC - [2011-03-21 23:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-01-05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.2\ICQ.exe
PRC - [2010-05-14 12:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2010-01-12 22:02:46 | 000,037,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2009-04-11 08:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-01-19 09:38:38 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007-09-26 14:31:22 | 001,057,064 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe
PRC - [2007-08-01 17:32:17 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
PRC - [2007-04-25 01:00:10 | 000,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe
PRC - [2007-04-17 22:39:42 | 000,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007-04-17 05:03:18 | 000,135,168 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2007-03-23 02:09:28 | 002,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2007-03-10 03:57:36 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007-02-20 12:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
PRC - [2007-02-15 11:07:15 | 004,390,912 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007-02-12 22:38:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007-02-12 22:37:58 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007-02-09 19:38:36 | 000,049,520 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2007-02-07 12:44:49 | 000,024,576 | ---- | M] (Syntek America Inc.) -- C:\Windows\System32\StkCSrv.exe
PRC - [2007-02-06 19:29:59 | 000,065,536 | R--- | M] (Cognizance Corporation) -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
PRC - [2007-02-06 03:13:14 | 000,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007-01-18 05:41:34 | 000,843,776 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2007-01-18 04:26:36 | 007,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006-12-29 01:17:50 | 000,123,248 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PRC - [2006-12-21 08:03:38 | 001,036,288 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2006-11-22 11:31:25 | 000,630,784 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2006-11-02 17:27:32 | 000,061,440 | ---- | M] (ASUSTeK Computer INC.) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2006-11-02 14:35:35 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.exe
PRC - [2005-07-07 00:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
========== Modules (No Company Name) ==========
MOD - [2011-06-24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011-06-24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011-03-21 23:10:36 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011-03-21 23:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011-01-05 10:18:56 | 000,733,184 | ---- | M] () -- C:\Program Files\ICQ7.2\MDb.dll
MOD - [2007-10-02 16:41:38 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2007-09-20 19:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007-08-01 17:32:17 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
MOD - [2007-03-06 16:55:03 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2007-02-09 19:38:36 | 000,049,520 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56ita.dll
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56esp.dll
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56brz.dll
MOD - [2006-11-22 11:31:29 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56kor.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56ger.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56fra.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56dnk.dll
MOD - [2006-11-22 11:31:27 | 000,057,344 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56jpn.dll
MOD - [2006-11-22 11:31:27 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56cht.dll
MOD - [2006-11-22 11:31:27 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56chs.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (wuauserv)
SRV - File not found [On_Demand | Stopped] -- -- (UPS)
SRV - File not found [Auto | Stopped] -- -- (ERSvc)
SRV - File not found [On_Demand | Stopped] -- -- (ClipSrv)
SRV - File not found [On_Demand | Stopped] -- -- (CiSvc)
SRV - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-09-26 14:31:44 | 001,554,728 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2007-08-01 17:18:31 | 000,356,864 | ---- | M] (CSR, plc) [Auto | Running] -- C:\Windows\System32\HFGService.dll -- (HFGService)
SRV - [2007-03-10 03:57:36 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2007-02-12 22:38:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007-02-07 12:44:49 | 000,024,576 | ---- | M] (Syntek America Inc.) [Auto | Running] -- C:\Windows\System32\StkCSrv.exe -- (StkSSrv)
SRV - [2007-02-06 19:29:59 | 000,074,240 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll -- (ASBroker)
SRV - [2007-02-06 03:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2006-12-29 01:17:50 | 000,123,248 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2006-06-21 12:13:59 | 000,131,584 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASChnl.dll -- (ASChannel)
========== Driver Services (SafeList) ==========
DRV - [2011-09-06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011-09-06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-09-06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-09-06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-09-06 22:36:26 | 000,054,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011-09-06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008-02-16 15:08:43 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2007-09-26 14:31:44 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007-09-26 14:31:44 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007-09-26 14:31:34 | 000,118,952 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\Windows\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007-08-01 17:18:31 | 000,036,352 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthav.sys -- (bthav)
DRV - [2007-08-01 17:18:31 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAudioHF.sys -- (BthAudioHF)
DRV - [2007-08-01 17:18:31 | 000,012,800 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV - [2007-05-10 09:19:28 | 000,828,288 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAVCap.sys -- (USBAVCap)
DRV - [2007-04-11 18:18:33 | 000,048,000 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2007-03-29 01:44:22 | 000,140,424 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor)
DRV - [2007-03-21 16:02:03 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-03-15 08:41:15 | 000,048,128 | ---- | M] (Attansic Technology corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atl01v32.sys -- (AtcL001)
DRV - [2007-03-06 17:04:29 | 002,411,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007-03-06 17:04:29 | 002,411,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2007-02-25 15:14:00 | 002,216,448 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R)
DRV - [2007-02-24 08:42:21 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007-02-13 06:41:21 | 001,245,056 | ---- | M] (Syntek) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\StkCMini.sys -- (StkCMini)
DRV - [2007-02-05 12:53:58 | 000,011,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2007-01-24 12:08:39 | 000,005,632 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2007-01-23 10:40:19 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006-12-14 09:11:57 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006-11-22 11:34:59 | 000,982,272 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006-11-16 04:02:19 | 000,015,216 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2006-11-02 11:50:17 | 000,041,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2006-11-02 09:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006-11-02 09:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2006-10-14 05:04:33 | 004,422,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2006-05-16 19:13:59 | 000,023,496 | ---- | M] (Cognizance Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\itsdisk.sys -- (ItSDisk)
DRV - [2006-02-07 13:52:57 | 000,006,912 | ---- | M] (JMicron ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2005-09-23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_result ... r=1.3.1&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.3.1
FF - prefs.js..extensions.enabledItems: {27E679CC-6AAB-4B2A-BB87-096FE4178464}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - prefs.js..extensions.enabledItems: wrc@avast.com:6.0.1289
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.3.1&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-03-21 21:33:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-03-21 21:33:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-09-14 20:26:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-09-15 22:58:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-09-15 22:58:54 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}: C:\Program Files\DAP\DAPFireFox
[2011-03-04 14:16:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Extensions
[2011-03-04 14:16:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
[2011-09-19 10:25:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions
[2009-01-14 11:35:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010-04-27 23:45:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-09-15 19:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011-09-15 19:51:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\staged-xpis
[2011-09-14 20:49:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-1.xml
[2007-12-18 08:26:16 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-10.xml
[2007-12-18 15:05:00 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-11.xml
[2007-12-19 23:16:47 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-12.xml
[2007-12-20 13:18:52 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-13.xml
[2007-12-20 17:31:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-14.xml
[2007-12-21 12:21:59 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-15.xml
[2007-12-22 19:56:10 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-16.xml
[2007-12-22 20:25:01 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-17.xml
[2007-12-23 11:28:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-18.xml
[2008-02-10 23:57:11 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-19.xml
[2007-09-24 17:26:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-2.xml
[2008-02-11 23:20:41 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-20.xml
[2008-02-13 16:56:18 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-21.xml
[2008-02-15 15:53:20 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-22.xml
[2008-02-16 09:39:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-23.xml
[2008-02-16 16:27:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-24.xml
[2008-02-17 23:28:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-25.xml
[2008-02-20 22:13:51 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-26.xml
[2008-02-21 12:51:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-27.xml
[2008-02-22 16:13:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-28.xml
[2008-02-22 16:14:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-29.xml
[2007-10-21 19:29:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-3.xml
[2008-02-23 08:31:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-30.xml
[2008-02-23 21:16:05 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-31.xml
[2008-02-24 09:16:17 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-32.xml
[2008-02-24 18:43:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-33.xml
[2008-03-27 15:58:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-34.xml
[2008-03-29 12:48:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-35.xml
[2008-03-29 19:51:23 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-36.xml
[2008-03-29 23:40:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-37.xml
[2008-03-30 11:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-38.xml
[2008-04-03 12:43:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-39.xml
[2007-11-02 22:20:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-4.xml
[2008-04-07 08:04:45 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-40.xml
[2008-04-07 16:10:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-41.xml
[2008-04-08 14:57:27 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-42.xml
[2008-04-09 15:25:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-43.xml
[2008-04-10 15:47:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-44.xml
[2008-04-13 20:42:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-45.xml
[2008-04-13 22:47:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-46.xml
[2008-04-15 12:38:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-47.xml
[2008-04-19 18:34:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-48.xml
[2008-04-19 18:42:40 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-49.xml
[2007-11-27 15:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-5.xml
[2008-04-19 19:17:21 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-50.xml
[2008-06-25 18:41:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-51.xml
[2008-09-30 21:01:40 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-52.xml
[2008-10-01 07:01:35 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-53.xml
[2008-11-27 00:09:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-54.xml
[2008-12-24 09:55:39 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-55.xml
[2009-01-12 11:19:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-56.xml
[2009-02-15 14:40:23 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-57.xml
[2009-02-15 14:46:27 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-58.xml
[2009-03-13 23:17:31 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-59.xml
[2007-12-04 12:06:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-6.xml
[2009-03-26 20:40:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-60.xml
[2009-03-30 10:54:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-61.xml
[2009-03-30 10:58:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-62.xml
[2009-05-01 09:12:55 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-63.xml
[2009-05-03 00:39:21 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-64.xml
[2009-09-03 20:30:56 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-65.xml
[2009-10-10 09:28:34 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-66.xml
[2009-10-10 20:13:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-67.xml
[2009-10-12 08:23:15 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-68.xml
[2009-11-30 18:19:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-69.xml
[2007-12-05 18:47:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-7.xml
[2009-12-19 21:07:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-70.xml
[2010-01-14 17:10:51 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-71.xml
[2010-02-20 17:12:29 | 000,000,961 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-72.xml
[2010-03-13 09:04:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-73.xml
[2010-04-06 16:59:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-74.xml
[2010-04-08 18:43:22 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-75.xml
[2010-07-15 16:57:49 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-76.xml
[2010-09-16 19:46:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-77.xml
[2010-09-17 05:56:54 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-78.xml
[2010-11-08 11:58:57 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-79.xml
[2007-12-06 20:44:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-8.xml
[2010-12-16 15:39:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-80.xml
[2011-01-14 12:12:01 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-81.xml
[2011-03-23 16:38:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-82.xml
[2011-03-24 11:37:32 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-83.xml
[2011-05-16 17:01:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-84.xml
[2007-12-17 22:34:49 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-9.xml
[2011-08-18 21:40:40 | 000,000,168 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.gif
[2011-08-18 21:40:40 | 000,000,618 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.src
[2010-06-21 17:35:24 | 000,001,042 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.xml
[2007-09-03 18:09:44 | 000,002,476 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\stahujcz.xml
[2011-03-17 05:23:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-03-17 05:23:40 | 000,000,000 | ---D | M] (QueryExplorer) -- C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}
[2010-12-16 21:28:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011-01-27 10:08:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-09-14 20:26:38 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2011-03-21 21:33:48 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\HTML5VIDEO
[2011-03-21 21:33:49 | 000,000,000 | ---D | M] (DivX HiQ) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\WPA
[2009-07-17 10:40:12 | 000,704,512 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2010-11-12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2008-06-29 12:45:00 | 000,685,104 | ---- | M] (www.devalvr.com) -- C:\Program Files\mozilla firefox\plugins\npdevalvr.dll
[2010-01-12 22:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2011-03-23 16:37:53 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011-03-23 16:37:53 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011-03-23 16:37:53 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011-03-23 16:37:53 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011-03-23 16:37:53 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2007-10-01 16:25:42 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (ASUS Security Protect Manager) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe ()
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe ()
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUSTeK Computer INC.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CognizanceTS] C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll (Cognizance Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WPCUMI] C:\Windows\System32\wpcumi.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Zobrazit originál - Reg Error: Value error. File not found
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1FB0B6AE-215C-4E90-9F2C-A232D26D695F}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\Windows\System32\APSHook.dll) -C:\Windows\System32\APSHook.dll (Cognizance Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{6a3dc86a-ed01-11df-8806-0013e86fde41}\Shell\AutoRun\command - "" = F:\EmDesk.exe
O33 - MountPoints2\{6a3dc86a-ed01-11df-8806-0013e86fde41}\Shell\EmDesk\command - "" = F:\EmDesk.exe
O33 - MountPoints2\{b149e8db-4630-11e0-bb00-001bfcfd9c42}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Kuba\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd
2.00 Gb Total Physical Memory | 1.07 Gb Available Physical Memory | 53.63% Memory free
3.94 Gb Paging File | 2.77 Gb Available in Paging File | 70.34% Paging File free
Paging file location(s): c:\pagefile.sys 2046 3069 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 8.18 Gb Free Space | 10.97% Space Free | Partition Type: NTFS
Drive D: | 67.69 Gb Total Space | 39.88 Gb Free Space | 58.92% Space Free | Partition Type: NTFS
Computer Name: KUBA-PC | User Name: Kuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011-09-19 18:30:18 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
PRC - [2011-09-06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011-07-05 20:04:50 | 002,388,848 | ---- | M] (Apple Inc.) -- C:\Program Files\Safari\Safari.exe
PRC - [2011-06-24 22:56:24 | 000,014,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
PRC - [2011-03-21 23:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-01-05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.2\ICQ.exe
PRC - [2010-05-14 12:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2010-01-12 22:02:46 | 000,037,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2009-04-11 08:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-01-19 09:38:38 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007-09-26 14:31:22 | 001,057,064 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe
PRC - [2007-08-01 17:32:17 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
PRC - [2007-04-25 01:00:10 | 000,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe
PRC - [2007-04-17 22:39:42 | 000,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007-04-17 05:03:18 | 000,135,168 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2007-03-23 02:09:28 | 002,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2007-03-10 03:57:36 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007-02-20 12:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
PRC - [2007-02-15 11:07:15 | 004,390,912 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007-02-12 22:38:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007-02-12 22:37:58 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007-02-09 19:38:36 | 000,049,520 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2007-02-07 12:44:49 | 000,024,576 | ---- | M] (Syntek America Inc.) -- C:\Windows\System32\StkCSrv.exe
PRC - [2007-02-06 19:29:59 | 000,065,536 | R--- | M] (Cognizance Corporation) -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
PRC - [2007-02-06 03:13:14 | 000,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007-01-18 05:41:34 | 000,843,776 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2007-01-18 04:26:36 | 007,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006-12-29 01:17:50 | 000,123,248 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PRC - [2006-12-21 08:03:38 | 001,036,288 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2006-11-22 11:31:25 | 000,630,784 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2006-11-02 17:27:32 | 000,061,440 | ---- | M] (ASUSTeK Computer INC.) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2006-11-02 14:35:35 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.exe
PRC - [2005-07-07 00:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
========== Modules (No Company Name) ==========
MOD - [2011-06-24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011-06-24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011-03-21 23:10:36 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011-03-21 23:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011-01-05 10:18:56 | 000,733,184 | ---- | M] () -- C:\Program Files\ICQ7.2\MDb.dll
MOD - [2007-10-02 16:41:38 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2007-09-20 19:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007-08-01 17:32:17 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
MOD - [2007-03-06 16:55:03 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2007-02-09 19:38:36 | 000,049,520 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56ita.dll
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56esp.dll
MOD - [2006-11-22 11:31:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56brz.dll
MOD - [2006-11-22 11:31:29 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56kor.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56ger.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56fra.dll
MOD - [2006-11-22 11:31:27 | 000,065,536 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56dnk.dll
MOD - [2006-11-22 11:31:27 | 000,057,344 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56jpn.dll
MOD - [2006-11-22 11:31:27 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56cht.dll
MOD - [2006-11-22 11:31:27 | 000,053,248 | ---- | M] () -- C:\Program Files\Motorola\SMSERIAL\sm56chs.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (wuauserv)
SRV - File not found [On_Demand | Stopped] -- -- (UPS)
SRV - File not found [Auto | Stopped] -- -- (ERSvc)
SRV - File not found [On_Demand | Stopped] -- -- (ClipSrv)
SRV - File not found [On_Demand | Stopped] -- -- (CiSvc)
SRV - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-09-26 14:31:44 | 001,554,728 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2007-08-01 17:18:31 | 000,356,864 | ---- | M] (CSR, plc) [Auto | Running] -- C:\Windows\System32\HFGService.dll -- (HFGService)
SRV - [2007-03-10 03:57:36 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2007-02-12 22:38:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007-02-07 12:44:49 | 000,024,576 | ---- | M] (Syntek America Inc.) [Auto | Running] -- C:\Windows\System32\StkCSrv.exe -- (StkSSrv)
SRV - [2007-02-06 19:29:59 | 000,074,240 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll -- (ASBroker)
SRV - [2007-02-06 03:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2006-12-29 01:17:50 | 000,123,248 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2006-06-21 12:13:59 | 000,131,584 | R--- | M] (Cognizance Corporation) [Auto | Running] -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASChnl.dll -- (ASChannel)
========== Driver Services (SafeList) ==========
DRV - [2011-09-06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011-09-06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-09-06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-09-06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-09-06 22:36:26 | 000,054,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011-09-06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008-02-16 15:08:43 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2007-09-26 14:31:44 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007-09-26 14:31:44 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007-09-26 14:31:34 | 000,118,952 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\Windows\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007-08-01 17:18:31 | 000,036,352 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthav.sys -- (bthav)
DRV - [2007-08-01 17:18:31 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAudioHF.sys -- (BthAudioHF)
DRV - [2007-08-01 17:18:31 | 000,012,800 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV - [2007-05-10 09:19:28 | 000,828,288 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAVCap.sys -- (USBAVCap)
DRV - [2007-04-11 18:18:33 | 000,048,000 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2007-03-29 01:44:22 | 000,140,424 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor)
DRV - [2007-03-21 16:02:03 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-03-15 08:41:15 | 000,048,128 | ---- | M] (Attansic Technology corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atl01v32.sys -- (AtcL001)
DRV - [2007-03-06 17:04:29 | 002,411,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007-03-06 17:04:29 | 002,411,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2007-02-25 15:14:00 | 002,216,448 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R)
DRV - [2007-02-24 08:42:21 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007-02-13 06:41:21 | 001,245,056 | ---- | M] (Syntek) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\StkCMini.sys -- (StkCMini)
DRV - [2007-02-05 12:53:58 | 000,011,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2007-01-24 12:08:39 | 000,005,632 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2007-01-23 10:40:19 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006-12-14 09:11:57 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006-11-22 11:34:59 | 000,982,272 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006-11-16 04:02:19 | 000,015,216 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2006-11-02 11:50:17 | 000,041,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2006-11-02 09:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006-11-02 09:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2006-10-14 05:04:33 | 004,422,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2006-05-16 19:13:59 | 000,023,496 | ---- | M] (Cognizance Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\itsdisk.sys -- (ItSDisk)
DRV - [2006-02-07 13:52:57 | 000,006,912 | ---- | M] (JMicron ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2005-09-23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_result ... r=1.3.1&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.3.1
FF - prefs.js..extensions.enabledItems: {27E679CC-6AAB-4B2A-BB87-096FE4178464}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - prefs.js..extensions.enabledItems: wrc@avast.com:6.0.1289
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.3.1&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-03-21 21:33:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-03-21 21:33:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-09-14 20:26:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-09-15 22:58:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-09-15 22:58:54 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}: C:\Program Files\DAP\DAPFireFox
[2011-03-04 14:16:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Extensions
[2011-03-04 14:16:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
[2011-09-19 10:25:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions
[2009-01-14 11:35:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010-04-27 23:45:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-09-15 19:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011-09-15 19:51:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\staged-xpis
[2011-09-14 20:49:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-1.xml
[2007-12-18 08:26:16 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-10.xml
[2007-12-18 15:05:00 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-11.xml
[2007-12-19 23:16:47 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-12.xml
[2007-12-20 13:18:52 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-13.xml
[2007-12-20 17:31:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-14.xml
[2007-12-21 12:21:59 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-15.xml
[2007-12-22 19:56:10 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-16.xml
[2007-12-22 20:25:01 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-17.xml
[2007-12-23 11:28:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-18.xml
[2008-02-10 23:57:11 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-19.xml
[2007-09-24 17:26:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-2.xml
[2008-02-11 23:20:41 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-20.xml
[2008-02-13 16:56:18 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-21.xml
[2008-02-15 15:53:20 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-22.xml
[2008-02-16 09:39:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-23.xml
[2008-02-16 16:27:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-24.xml
[2008-02-17 23:28:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-25.xml
[2008-02-20 22:13:51 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-26.xml
[2008-02-21 12:51:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-27.xml
[2008-02-22 16:13:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-28.xml
[2008-02-22 16:14:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-29.xml
[2007-10-21 19:29:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-3.xml
[2008-02-23 08:31:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-30.xml
[2008-02-23 21:16:05 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-31.xml
[2008-02-24 09:16:17 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-32.xml
[2008-02-24 18:43:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-33.xml
[2008-03-27 15:58:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-34.xml
[2008-03-29 12:48:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-35.xml
[2008-03-29 19:51:23 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-36.xml
[2008-03-29 23:40:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-37.xml
[2008-03-30 11:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-38.xml
[2008-04-03 12:43:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-39.xml
[2007-11-02 22:20:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-4.xml
[2008-04-07 08:04:45 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-40.xml
[2008-04-07 16:10:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-41.xml
[2008-04-08 14:57:27 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-42.xml
[2008-04-09 15:25:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-43.xml
[2008-04-10 15:47:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-44.xml
[2008-04-13 20:42:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-45.xml
[2008-04-13 22:47:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-46.xml
[2008-04-15 12:38:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-47.xml
[2008-04-19 18:34:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-48.xml
[2008-04-19 18:42:40 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-49.xml
[2007-11-27 15:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-5.xml
[2008-04-19 19:17:21 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-50.xml
[2008-06-25 18:41:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-51.xml
[2008-09-30 21:01:40 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-52.xml
[2008-10-01 07:01:35 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-53.xml
[2008-11-27 00:09:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-54.xml
[2008-12-24 09:55:39 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-55.xml
[2009-01-12 11:19:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-56.xml
[2009-02-15 14:40:23 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-57.xml
[2009-02-15 14:46:27 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-58.xml
[2009-03-13 23:17:31 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-59.xml
[2007-12-04 12:06:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-6.xml
[2009-03-26 20:40:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-60.xml
[2009-03-30 10:54:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-61.xml
[2009-03-30 10:58:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-62.xml
[2009-05-01 09:12:55 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-63.xml
[2009-05-03 00:39:21 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-64.xml
[2009-09-03 20:30:56 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-65.xml
[2009-10-10 09:28:34 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-66.xml
[2009-10-10 20:13:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-67.xml
[2009-10-12 08:23:15 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-68.xml
[2009-11-30 18:19:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-69.xml
[2007-12-05 18:47:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-7.xml
[2009-12-19 21:07:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-70.xml
[2010-01-14 17:10:51 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-71.xml
[2010-02-20 17:12:29 | 000,000,961 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-72.xml
[2010-03-13 09:04:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-73.xml
[2010-04-06 16:59:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-74.xml
[2010-04-08 18:43:22 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-75.xml
[2010-07-15 16:57:49 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-76.xml
[2010-09-16 19:46:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-77.xml
[2010-09-17 05:56:54 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-78.xml
[2010-11-08 11:58:57 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-79.xml
[2007-12-06 20:44:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-8.xml
[2010-12-16 15:39:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-80.xml
[2011-01-14 12:12:01 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-81.xml
[2011-03-23 16:38:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-82.xml
[2011-03-24 11:37:32 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-83.xml
[2011-05-16 17:01:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-84.xml
[2007-12-17 22:34:49 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-9.xml
[2011-08-18 21:40:40 | 000,000,168 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.gif
[2011-08-18 21:40:40 | 000,000,618 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.src
[2010-06-21 17:35:24 | 000,001,042 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.xml
[2007-09-03 18:09:44 | 000,002,476 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\stahujcz.xml
[2011-03-17 05:23:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-03-17 05:23:40 | 000,000,000 | ---D | M] (QueryExplorer) -- C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}
[2010-12-16 21:28:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011-01-27 10:08:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-09-14 20:26:38 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2011-03-21 21:33:48 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\HTML5VIDEO
[2011-03-21 21:33:49 | 000,000,000 | ---D | M] (DivX HiQ) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\WPA
[2009-07-17 10:40:12 | 000,704,512 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2010-11-12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2008-06-29 12:45:00 | 000,685,104 | ---- | M] (www.devalvr.com) -- C:\Program Files\mozilla firefox\plugins\npdevalvr.dll
[2010-01-12 22:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2011-03-23 16:37:53 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011-03-23 16:37:53 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011-03-23 16:37:53 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011-03-23 16:37:53 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011-03-23 16:37:53 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2007-10-01 16:25:42 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (ASUS Security Protect Manager) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found.
O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe ()
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe ()
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUSTeK Computer INC.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CognizanceTS] C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll (Cognizance Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WPCUMI] C:\Windows\System32\wpcumi.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Zobrazit originál - Reg Error: Value error. File not found
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1FB0B6AE-215C-4E90-9F2C-A232D26D695F}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\Windows\System32\APSHook.dll) -C:\Windows\System32\APSHook.dll (Cognizance Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{6a3dc86a-ed01-11df-8806-0013e86fde41}\Shell\AutoRun\command - "" = F:\EmDesk.exe
O33 - MountPoints2\{6a3dc86a-ed01-11df-8806-0013e86fde41}\Shell\EmDesk\command - "" = F:\EmDesk.exe
O33 - MountPoints2\{b149e8db-4630-11e0-bb00-001bfcfd9c42}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found
Re: Prosím o preventivní kontrolu loglistu. Děkuji
musel jsem to rozdělit mělo to mnoho znaku povolených je pouze 8000
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: wuauserv - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.I420 - MSh263.drv File not found
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: wave1 - C:\Windows\System32\serwvdrv.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011-09-19 18:30:12 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
[2011-09-19 11:55:50 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka (2)
[2011-09-19 11:43:06 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka
[2011-09-19 09:56:40 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\kaplička
[2011-09-19 08:59:37 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka (4)
[2011-09-15 23:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011-09-15 22:58:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011-09-15 22:57:57 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011-09-15 19:54:13 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2007-01-24 12:08:39 | 000,005,632 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
========== Files - Modified Within 7 Days ==========
[2011-09-19 18:50:11 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011-09-19 18:50:00 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{32AEDB3F-F384-4079-B2F5-A8475E0FECBA}.job
[2011-09-19 18:45:36 | 000,066,038 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011-09-19 18:45:36 | 000,038,014 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-09-19 18:45:36 | 000,019,406 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011-09-19 18:45:36 | 000,011,140 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-09-19 18:38:29 | 000,003,168 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:28 | 000,003,168 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-09-19 18:38:16 | 2146,689,024 | -HS- | M] () -- C:\hiberfil.sys
[2011-09-19 18:37:02 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011-09-19 18:30:46 | 000,101,888 | ---- | M] () -- C:\Users\Kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-09-19 18:30:18 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
[2011-09-19 16:10:28 | 000,781,383 | ---- | M] () -- C:\Users\Kuba\Desktop\RSIT.exe
[2011-09-19 11:57:51 | 059,391,927 | ---- | M] () -- C:\Users\Kuba\Desktop\Anglie -3.rar
[2011-09-19 11:57:06 | 066,015,085 | ---- | M] () -- C:\Users\Kuba\Desktop\anglie-2.rar
[2011-09-19 11:43:44 | 016,109,510 | ---- | M] () -- C:\Users\Kuba\Desktop\anglie-1.rar
[2011-09-19 09:22:07 | 000,000,407 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2011-09-19 09:22:07 | 000,000,034 | ---- | M] () -- C:\Windows\System32\BD7010.DAT
[2011-09-18 18:22:18 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4BCD466E-A3ED-4F95-9C2F-76D216681E20}.job
[2011-09-15 23:01:49 | 000,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2011-09-15 22:58:26 | 000,001,733 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-09-15 19:50:46 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011-09-15 19:43:05 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2011-09-14 20:26:38 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
========== Files Created - No Company Name ==========
[2011-09-19 18:50:11 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011-09-19 16:11:40 | 000,781,383 | ---- | C] () -- C:\Users\Kuba\Desktop\RSIT.exe
[2011-09-19 11:57:19 | 059,391,927 | ---- | C] () -- C:\Users\Kuba\Desktop\Anglie -3.rar
[2011-09-19 11:56:35 | 066,015,085 | ---- | C] () -- C:\Users\Kuba\Desktop\anglie-2.rar
[2011-09-19 11:43:36 | 016,109,510 | ---- | C] () -- C:\Users\Kuba\Desktop\anglie-1.rar
[2011-09-15 22:58:26 | 000,001,733 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-01-14 12:18:36 | 000,170,924 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010-05-10 19:37:51 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010-04-27 23:41:56 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2010-04-19 20:31:03 | 000,261,632 | ---- | C] () -- C:\Windows\PEV.exe
[2010-04-19 20:31:03 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010-04-19 20:31:03 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010-04-19 20:31:03 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010-04-19 20:31:03 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009-10-24 14:29:17 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009-10-24 14:29:16 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009-09-27 19:58:59 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2009-01-14 11:35:02 | 000,002,686 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2009-01-14 11:33:45 | 000,000,034 | ---- | C] () -- C:\Windows\WTRDCTM.INI
[2009-01-07 19:57:45 | 000,302,592 | ---- | C] () -- C:\Windows\mauninst.exe
[2008-12-22 06:04:00 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2008-09-26 20:23:01 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008-09-01 21:27:51 | 000,000,064 | ---- | C] () -- C:\Windows\AVerText.ini
[2008-09-01 20:37:29 | 000,049,152 | ---- | C] () -- C:\Windows\System32\AVerIO.dll
[2008-09-01 20:37:29 | 000,003,456 | ---- | C] () -- C:\Windows\System32\AVerIO.sys
[2008-09-01 20:37:25 | 000,262,144 | ---- | C] () -- C:\Windows\System32\sptlib01.dll
[2008-09-01 20:37:25 | 000,249,856 | ---- | C] () -- C:\Windows\System32\sptlib02.dll
[2008-06-27 17:11:41 | 000,000,552 | ---- | C] () -- C:\Users\Kuba\AppData\Local\d3d8caps.dat
[2008-04-30 18:25:54 | 000,000,407 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2008-04-30 18:25:54 | 000,000,034 | ---- | C] () -- C:\Windows\System32\BD7010.DAT
[2008-03-15 00:04:24 | 000,000,680 | ---- | C] () -- C:\Users\Kuba\AppData\Local\d3d9caps.dat
[2007-11-28 13:00:03 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007-09-19 15:34:12 | 000,002,827 | ---- | C] () -- C:\Windows\mozver.dat
[2007-09-01 16:14:11 | 000,031,007 | ---- | C] () -- C:\Users\Kuba\AppData\Roaming\UserTile.png
[2007-08-27 20:58:28 | 000,000,092 | ---- | C] () -- C:\Users\Kuba\AppData\Local\fusioncache.dat
[2007-08-24 13:39:15 | 000,319,488 | ---- | C] () -- C:\Windows\System32\MafiaSetup.exe
[2007-08-24 13:22:02 | 000,319,488 | R--- | C] () -- C:\Users\Kuba\AppData\Roaming\MafiaSetup.exe
[2007-08-23 22:07:13 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2007-08-23 19:30:27 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2007-08-23 17:19:46 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2007-08-23 15:02:59 | 000,101,888 | ---- | C] () -- C:\Users\Kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-08-01 17:32:28 | 000,037,232 | ---- | C] () -- C:\Windows\ASScrProlog.exe
[2007-08-01 17:32:24 | 000,012,288 | ---- | C] () -- C:\Windows\impborl.dll
[2007-08-01 17:32:16 | 000,033,136 | ---- | C] () -- C:\Windows\ASScrPro.exe
[2007-04-21 13:18:51 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2007-04-21 13:18:51 | 000,066,038 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2007-04-21 13:18:51 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2007-04-21 13:18:51 | 000,019,406 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2007-04-21 13:15:38 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2007-04-21 12:36:26 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2007-03-06 16:55:03 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007-03-06 16:30:01 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2007-03-06 13:04:53 | 000,143,676 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2007-02-21 20:26:58 | 000,995,328 | ---- | C] () -- C:\Windows\System32\WLIHVUI.dll
[2007-02-12 08:59:15 | 000,061,440 | ---- | C] () -- C:\Windows\StkUnist.exe
[2006-11-02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006-11-02 14:47:37 | 000,448,184 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006-11-02 12:33:01 | 000,038,014 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006-11-02 12:33:01 | 000,011,140 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006-11-02 12:25:25 | 001,197,056 | ---- | C] () -- C:\Windows\System32\hpotiop1.dll
[2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006-03-09 04:57:59 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005-10-14 12:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2005-10-14 12:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005-10-14 12:56:50 | 000,778,240 | ---- | C] () -- C:\Windows\System32\DivXsm.exe
[2005-10-14 12:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005-10-14 12:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005-10-14 12:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005-10-14 12:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005-10-14 12:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2005-05-07 06:05:59 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2005-04-03 01:29:59 | 000,110,592 | ---- | C] () -- C:\Windows\System32\scardsyn.dll
[2001-11-22 22:39:14 | 000,028,672 | ---- | C] () -- C:\Windows\lmunin2.exe
[2000-07-15 00:00:00 | 000,030,720 | ---- | C] () -- C:\Windows\regtlib.exe
[1998-05-06 06:09:59 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ODMA32.dll
========== LOP Check ==========
[2010-06-05 18:55:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\.Torrent Swapper
[2010-10-26 19:14:35 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Alawar
[2011-02-14 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AppClient
[2009-09-27 19:53:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Blue Cat Audio
[2008-03-26 22:35:10 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Daoisoft
[2011-06-10 14:38:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ
[2007-08-23 19:09:07 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ Toolbar
[2010-06-29 10:53:42 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InterTrust
[2009-01-14 11:36:29 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\LangSoft
[2009-03-13 11:03:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Leawo
[2007-11-05 22:28:54 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Locktime
[2010-03-16 22:39:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Maxthon2
[2010-01-29 21:24:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MMToolz
[2010-03-16 00:17:09 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MxBoost
[2007-08-27 20:54:04 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\My Battle for Middle-earth Files
[2009-02-27 17:19:08 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Nokia
[2007-08-23 17:08:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Opera
[2007-11-05 23:07:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Orbit
[2009-02-27 17:05:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PC Suite
[2007-09-01 16:14:11 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PeerNetworking
[2008-01-10 13:59:52 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Plugin
[2007-09-02 20:15:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\QIP
[2011-03-04 14:16:32 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\TomTom
[2011-01-12 15:08:25 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Xilisoft
[2011-09-19 18:37:09 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-09-19 18:50:00 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{32AEDB3F-F384-4079-B2F5-A8475E0FECBA}.job
[2011-09-18 18:22:18 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{4BCD466E-A3ED-4F95-9C2F-76D216681E20}.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\erdnt\cache\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\erdnt\cache\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006-11-02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008-02-13 16:07:49 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008-02-13 16:07:49 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008-02-13 16:07:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009-04-11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009-04-11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008-01-19 09:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006-11-02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006-11-02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006-11-02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006-11-02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2006-11-02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
[2008-01-19 09:34:00 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2009-04-11 08:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\System32\cryptsvc.dll
[2009-04-11 08:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2008-10-29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008-10-30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007-11-14 16:02:45 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007-11-14 16:02:45 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008-10-28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006-11-02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008-01-19 09:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009-04-11 08:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTOR.SYS >
[2007-02-12 22:37:22 | 000,537,368 | ---- | M] (Intel Corporation) MD5=2EE127D5407DA3957EE54711C9AED6EC -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\iaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Windows\System32\drivers\iaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_1cb29a96\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008-01-19 09:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008-01-19 09:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006-11-02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006-11-02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009-06-15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009-09-10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009-06-15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\System32\lsass.exe
[2009-06-15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009-02-13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2006-11-02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009-06-15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009-06-15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009-02-13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009-06-15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009-06-15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009-09-09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009-09-10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2009-02-13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\erdnt\cache\ndis.sys
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2006-11-02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2008-01-19 09:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006-11-02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009-04-11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009-04-11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008-01-19 09:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008-01-19 09:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008-01-19 09:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008-01-19 09:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008-01-19 09:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008-01-19 09:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006-11-02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009-04-11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009-04-11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2008-01-19 09:33:31 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009-04-11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009-04-11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
[2006-11-02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SVCHOST.EXE >
[2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008-04-26 10:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2008-01-09 16:03:58 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=028061C7F6D2D03068C72E2A27E4228A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7\tcpip.sys
[2009-04-11 08:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009-12-08 22:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009-08-15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009-08-14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2010-02-18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010-02-18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009-08-14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2008-01-09 16:03:58 | 000,804,352 | ---- | M] (Microsoft Corporation) MD5=43EAE40B50FE3E60D194DD9C97EBB1FD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001\tcpip.sys
[2009-12-08 22:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\erdnt\cache\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\System32\drivers\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010-02-18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2008-02-13 16:06:03 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2009-12-08 22:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2008-02-13 16:06:03 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2009-08-14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2008-04-26 10:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009-12-08 19:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009-08-14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010-02-18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2009-12-08 19:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2006-11-02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2007-09-04 20:58:57 | 000,803,840 | ---- | M] (Microsoft Corporation) MD5=D993AAC691DEEC99A064420FAF3437E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20582_none_5fd47169ab8fd179\tcpip.sys
[2010-02-18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009-12-08 22:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2008-01-19 09:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009-08-14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008-01-19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008-01-19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006-11-02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008-01-19 09:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008-01-19 09:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll
[2008-01-19 09:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
[2006-11-02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010-06-05 18:55:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\.Torrent Swapper
[2011-01-06 15:20:21 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Adobe
[2007-12-04 18:18:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AdobeUM
[2010-01-25 12:45:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Ahead
[2010-10-26 19:14:35 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Alawar
[2011-02-14 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AppClient
[2011-09-19 12:49:46 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Apple Computer
[2007-08-28 21:25:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ATI
[2009-09-27 19:53:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Blue Cat Audio
[2010-12-15 15:53:47 | 000,000,000 | R--D | M] -- C:\Users\Kuba\AppData\Roaming\Brother
[2008-03-26 22:35:10 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Daoisoft
[2010-04-12 21:51:22 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\DivX
[2008-02-16 15:12:14 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Hamachi
[2011-06-10 14:38:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ
[2007-08-23 19:09:07 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ Toolbar
[2007-08-23 13:13:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Identities
[2007-09-06 15:46:46 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InstallShield
[2007-08-24 15:43:45 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Intel
[2010-06-29 10:53:42 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InterTrust
[2009-01-14 11:36:29 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\LangSoft
[2009-03-13 11:03:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Leawo
[2007-11-05 22:28:54 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Locktime
[2007-08-23 13:15:03 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Macromedia
[2009-02-26 18:59:05 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Malwarebytes
[2010-03-16 22:39:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Maxthon2
[2006-11-02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Media Center Programs
[2011-02-14 17:38:33 | 000,000,000 | --SD | M] -- C:\Users\Kuba\AppData\Roaming\Microsoft
[2010-01-29 21:24:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MMToolz
[2008-12-24 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Mozilla
[2010-03-16 00:17:09 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MxBoost
[2007-08-27 20:54:04 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\My Battle for Middle-earth Files
[2007-11-23 16:37:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\NeroDCTemplates
[2009-02-27 17:19:08 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Nokia
[2007-08-23 17:08:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Opera
[2007-11-05 23:07:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Orbit
[2009-02-27 17:05:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PC Suite
[2007-09-01 16:14:11 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PeerNetworking
[2008-01-10 13:59:52 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Plugin
[2007-09-02 20:15:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\QIP
[2010-02-22 13:49:05 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\RealArcade
[2011-05-15 20:15:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Skype
[2011-05-15 19:46:55 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\skypePM
[2011-03-04 14:16:32 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\TomTom
[2010-02-03 09:49:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Winamp
[2007-09-02 20:13:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\WinRAR
[2011-01-12 15:08:25 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Xilisoft
< %APPDATA%\*.exe /s >
[2002-08-29 19:33:56 | 000,319,488 | R--- | M] () -- C:\Users\Kuba\AppData\Roaming\MafiaSetup.exe
[2008-09-01 23:33:54 | 002,834,432 | ---- | M] (DOSBox Team) -- C:\Users\Kuba\AppData\Roaming\AppClient\Dosbox\dosbox.exe
[2011-02-17 19:10:25 | 000,336,813 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Fantasy-world-Dizzy\Dizzy3.exe
[2011-02-14 17:19:19 | 000,155,382 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Magicland-Dizzy\Dizzy4.exe
[2011-02-18 11:20:26 | 000,139,639 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Prince-of-The-Yolkfolk\Dizzy6.exe
[2008-03-25 05:01:44 | 000,078,136 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Maxthon2\maxupdate.exe
[2007-12-04 15:29:48 | 000,120,064 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Maxthon2\SharedAccount\Addon\ScreenCapture\CaptureScreen.exe
[2011-01-12 11:09:12 | 000,029,926 | R--- | M] () -- C:\Users\Kuba\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2009-10-12 08:23:11 | 000,177,024 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\FlashGot.exe
[2008-06-26 19:02:22 | 008,926,832 | ---- | M] (Opera Software ASA ) -- C:\Users\Kuba\AppData\Roaming\Opera\Opera\Opera_950_in_Setup.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2006-11-02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006-11-02 12:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006-11-02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006-11-02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006-11-02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011-09-19 18:38:28 | 000,003,168 | ---- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:29 | 000,003,168 | ---- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 09:22:07 | 000,000,034 | ---- | M] () -- C:\Windows\system32\BD7010.DAT
[2011-09-19 18:45:36 | 000,019,406 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011-09-19 18:45:36 | 000,011,140 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011-09-19 18:45:36 | 000,066,038 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011-09-19 18:45:36 | 000,038,014 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011-09-19 18:45:36 | 000,114,086 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009-04-11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation)
"ehTray.exe" = C:\Windows\ehome\ehTray.exe -- [2008-01-19 09:33:09 | 000,125,952 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4 -- [2011-01-05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.)
"TomTomHOME.exe" = "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2008-01-19 09:33:39 | 000,202,240 | ---- | M] (Microsoft Corporation)
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011-09-19 18:50:11 | 000,000,512 | ---- | M] () MD5=677D53E0ED89E01511B69BC7F49F0E75 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
========== Files - Unicode (All) ==========
[2011-05-26 12:16:09 | 000,000,000 | ---D | M](C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
[2011-05-26 12:16:09 | 000,000,000 | ---D | M](C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
(C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
========== Alternate Data Streams ==========
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:CD060F93
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:5BB923A2
< End of report >
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: wuauserv - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.I420 - MSh263.drv File not found
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: wave1 - C:\Windows\System32\serwvdrv.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011-09-19 18:30:12 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
[2011-09-19 11:55:50 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka (2)
[2011-09-19 11:43:06 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka
[2011-09-19 09:56:40 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\kaplička
[2011-09-19 08:59:37 | 000,000,000 | ---D | C] -- C:\Users\Kuba\Desktop\Nová složka (4)
[2011-09-15 23:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011-09-15 22:58:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011-09-15 22:57:57 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011-09-15 19:54:13 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2007-01-24 12:08:39 | 000,005,632 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
========== Files - Modified Within 7 Days ==========
[2011-09-19 18:50:11 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011-09-19 18:50:00 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{32AEDB3F-F384-4079-B2F5-A8475E0FECBA}.job
[2011-09-19 18:45:36 | 000,066,038 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011-09-19 18:45:36 | 000,038,014 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-09-19 18:45:36 | 000,019,406 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011-09-19 18:45:36 | 000,011,140 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-09-19 18:38:29 | 000,003,168 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:28 | 000,003,168 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-09-19 18:38:16 | 2146,689,024 | -HS- | M] () -- C:\hiberfil.sys
[2011-09-19 18:37:02 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011-09-19 18:30:46 | 000,101,888 | ---- | M] () -- C:\Users\Kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-09-19 18:30:18 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Desktop\OTL.exe
[2011-09-19 16:10:28 | 000,781,383 | ---- | M] () -- C:\Users\Kuba\Desktop\RSIT.exe
[2011-09-19 11:57:51 | 059,391,927 | ---- | M] () -- C:\Users\Kuba\Desktop\Anglie -3.rar
[2011-09-19 11:57:06 | 066,015,085 | ---- | M] () -- C:\Users\Kuba\Desktop\anglie-2.rar
[2011-09-19 11:43:44 | 016,109,510 | ---- | M] () -- C:\Users\Kuba\Desktop\anglie-1.rar
[2011-09-19 09:22:07 | 000,000,407 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2011-09-19 09:22:07 | 000,000,034 | ---- | M] () -- C:\Windows\System32\BD7010.DAT
[2011-09-18 18:22:18 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4BCD466E-A3ED-4F95-9C2F-76D216681E20}.job
[2011-09-15 23:01:49 | 000,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2011-09-15 22:58:26 | 000,001,733 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-09-15 19:50:46 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011-09-15 19:43:05 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2011-09-14 20:26:38 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
========== Files Created - No Company Name ==========
[2011-09-19 18:50:11 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011-09-19 16:11:40 | 000,781,383 | ---- | C] () -- C:\Users\Kuba\Desktop\RSIT.exe
[2011-09-19 11:57:19 | 059,391,927 | ---- | C] () -- C:\Users\Kuba\Desktop\Anglie -3.rar
[2011-09-19 11:56:35 | 066,015,085 | ---- | C] () -- C:\Users\Kuba\Desktop\anglie-2.rar
[2011-09-19 11:43:36 | 016,109,510 | ---- | C] () -- C:\Users\Kuba\Desktop\anglie-1.rar
[2011-09-15 22:58:26 | 000,001,733 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-01-14 12:18:36 | 000,170,924 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010-05-10 19:37:51 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010-04-27 23:41:56 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2010-04-19 20:31:03 | 000,261,632 | ---- | C] () -- C:\Windows\PEV.exe
[2010-04-19 20:31:03 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010-04-19 20:31:03 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010-04-19 20:31:03 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010-04-19 20:31:03 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009-10-24 14:29:17 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009-10-24 14:29:16 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009-09-27 19:58:59 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2009-01-14 11:35:02 | 000,002,686 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2009-01-14 11:33:45 | 000,000,034 | ---- | C] () -- C:\Windows\WTRDCTM.INI
[2009-01-07 19:57:45 | 000,302,592 | ---- | C] () -- C:\Windows\mauninst.exe
[2008-12-22 06:04:00 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2008-09-26 20:23:01 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008-09-01 21:27:51 | 000,000,064 | ---- | C] () -- C:\Windows\AVerText.ini
[2008-09-01 20:37:29 | 000,049,152 | ---- | C] () -- C:\Windows\System32\AVerIO.dll
[2008-09-01 20:37:29 | 000,003,456 | ---- | C] () -- C:\Windows\System32\AVerIO.sys
[2008-09-01 20:37:25 | 000,262,144 | ---- | C] () -- C:\Windows\System32\sptlib01.dll
[2008-09-01 20:37:25 | 000,249,856 | ---- | C] () -- C:\Windows\System32\sptlib02.dll
[2008-06-27 17:11:41 | 000,000,552 | ---- | C] () -- C:\Users\Kuba\AppData\Local\d3d8caps.dat
[2008-04-30 18:25:54 | 000,000,407 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2008-04-30 18:25:54 | 000,000,034 | ---- | C] () -- C:\Windows\System32\BD7010.DAT
[2008-03-15 00:04:24 | 000,000,680 | ---- | C] () -- C:\Users\Kuba\AppData\Local\d3d9caps.dat
[2007-11-28 13:00:03 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007-09-19 15:34:12 | 000,002,827 | ---- | C] () -- C:\Windows\mozver.dat
[2007-09-01 16:14:11 | 000,031,007 | ---- | C] () -- C:\Users\Kuba\AppData\Roaming\UserTile.png
[2007-08-27 20:58:28 | 000,000,092 | ---- | C] () -- C:\Users\Kuba\AppData\Local\fusioncache.dat
[2007-08-24 13:39:15 | 000,319,488 | ---- | C] () -- C:\Windows\System32\MafiaSetup.exe
[2007-08-24 13:22:02 | 000,319,488 | R--- | C] () -- C:\Users\Kuba\AppData\Roaming\MafiaSetup.exe
[2007-08-23 22:07:13 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2007-08-23 19:30:27 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2007-08-23 17:19:46 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2007-08-23 15:02:59 | 000,101,888 | ---- | C] () -- C:\Users\Kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-08-01 17:32:28 | 000,037,232 | ---- | C] () -- C:\Windows\ASScrProlog.exe
[2007-08-01 17:32:24 | 000,012,288 | ---- | C] () -- C:\Windows\impborl.dll
[2007-08-01 17:32:16 | 000,033,136 | ---- | C] () -- C:\Windows\ASScrPro.exe
[2007-04-21 13:18:51 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2007-04-21 13:18:51 | 000,066,038 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2007-04-21 13:18:51 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2007-04-21 13:18:51 | 000,019,406 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2007-04-21 13:15:38 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2007-04-21 12:36:26 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2007-03-06 16:55:03 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007-03-06 16:30:01 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2007-03-06 13:04:53 | 000,143,676 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2007-02-21 20:26:58 | 000,995,328 | ---- | C] () -- C:\Windows\System32\WLIHVUI.dll
[2007-02-12 08:59:15 | 000,061,440 | ---- | C] () -- C:\Windows\StkUnist.exe
[2006-11-02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006-11-02 14:47:37 | 000,448,184 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006-11-02 12:33:01 | 000,038,014 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006-11-02 12:33:01 | 000,011,140 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006-11-02 12:25:25 | 001,197,056 | ---- | C] () -- C:\Windows\System32\hpotiop1.dll
[2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006-03-09 04:57:59 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005-10-14 12:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2005-10-14 12:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005-10-14 12:56:50 | 000,778,240 | ---- | C] () -- C:\Windows\System32\DivXsm.exe
[2005-10-14 12:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005-10-14 12:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005-10-14 12:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005-10-14 12:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005-10-14 12:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2005-05-07 06:05:59 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2005-04-03 01:29:59 | 000,110,592 | ---- | C] () -- C:\Windows\System32\scardsyn.dll
[2001-11-22 22:39:14 | 000,028,672 | ---- | C] () -- C:\Windows\lmunin2.exe
[2000-07-15 00:00:00 | 000,030,720 | ---- | C] () -- C:\Windows\regtlib.exe
[1998-05-06 06:09:59 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ODMA32.dll
========== LOP Check ==========
[2010-06-05 18:55:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\.Torrent Swapper
[2010-10-26 19:14:35 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Alawar
[2011-02-14 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AppClient
[2009-09-27 19:53:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Blue Cat Audio
[2008-03-26 22:35:10 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Daoisoft
[2011-06-10 14:38:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ
[2007-08-23 19:09:07 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ Toolbar
[2010-06-29 10:53:42 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InterTrust
[2009-01-14 11:36:29 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\LangSoft
[2009-03-13 11:03:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Leawo
[2007-11-05 22:28:54 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Locktime
[2010-03-16 22:39:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Maxthon2
[2010-01-29 21:24:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MMToolz
[2010-03-16 00:17:09 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MxBoost
[2007-08-27 20:54:04 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\My Battle for Middle-earth Files
[2009-02-27 17:19:08 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Nokia
[2007-08-23 17:08:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Opera
[2007-11-05 23:07:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Orbit
[2009-02-27 17:05:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PC Suite
[2007-09-01 16:14:11 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PeerNetworking
[2008-01-10 13:59:52 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Plugin
[2007-09-02 20:15:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\QIP
[2011-03-04 14:16:32 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\TomTom
[2011-01-12 15:08:25 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Xilisoft
[2011-09-19 18:37:09 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-09-19 18:50:00 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{32AEDB3F-F384-4079-B2F5-A8475E0FECBA}.job
[2011-09-18 18:22:18 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{4BCD466E-A3ED-4F95-9C2F-76D216681E20}.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\erdnt\cache\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\erdnt\cache\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006-11-02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008-02-13 16:07:49 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008-02-13 16:07:49 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008-02-13 16:07:48 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009-04-11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009-04-11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008-01-19 09:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006-11-02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006-11-02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006-11-02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006-11-02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2006-11-02 11:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
[2008-01-19 09:34:00 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2009-04-11 08:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\System32\cryptsvc.dll
[2009-04-11 08:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2008-10-29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008-10-30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007-11-14 16:02:45 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007-11-14 16:02:45 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008-10-28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006-11-02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008-01-19 09:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009-04-11 08:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTOR.SYS >
[2007-02-12 22:37:22 | 000,537,368 | ---- | M] (Intel Corporation) MD5=2EE127D5407DA3957EE54711C9AED6EC -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\iaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Windows\System32\drivers\iaStor.sys
[2007-02-12 22:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F5ED5D8 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_1cb29a96\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008-01-19 09:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008-01-19 09:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006-11-02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006-11-02 11:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008-01-19 09:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009-06-15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009-09-10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009-06-15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\System32\lsass.exe
[2009-06-15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009-02-13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2006-11-02 11:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009-06-15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009-06-15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009-02-13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009-06-15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009-06-15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009-09-09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009-09-10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008-01-19 09:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2009-02-13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\erdnt\cache\ndis.sys
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2006-11-02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2008-01-19 09:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006-11-02 11:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009-04-11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009-04-11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008-01-19 09:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008-01-19 09:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008-01-19 09:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008-01-19 09:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008-01-19 09:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008-01-19 09:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006-11-02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009-04-11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009-04-11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2008-01-19 09:33:31 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009-04-11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009-04-11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
[2006-11-02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SVCHOST.EXE >
[2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008-04-26 10:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2008-01-09 16:03:58 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=028061C7F6D2D03068C72E2A27E4228A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7\tcpip.sys
[2009-04-11 08:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009-12-08 22:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009-08-15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009-08-14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2010-02-18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010-02-18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009-08-14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2008-01-09 16:03:58 | 000,804,352 | ---- | M] (Microsoft Corporation) MD5=43EAE40B50FE3E60D194DD9C97EBB1FD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001\tcpip.sys
[2009-12-08 22:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\erdnt\cache\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\System32\drivers\tcpip.sys
[2010-02-18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010-02-18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2008-02-13 16:06:03 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2009-12-08 22:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2008-02-13 16:06:03 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2009-08-14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2008-04-26 10:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009-12-08 19:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009-08-14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010-02-18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2009-12-08 19:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2006-11-02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2007-09-04 20:58:57 | 000,803,840 | ---- | M] (Microsoft Corporation) MD5=D993AAC691DEEC99A064420FAF3437E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20582_none_5fd47169ab8fd179\tcpip.sys
[2010-02-18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009-12-08 22:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2008-01-19 09:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009-08-14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008-01-19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008-01-19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006-11-02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008-01-19 09:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008-01-19 09:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll
[2008-01-19 09:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
[2006-11-02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010-06-05 18:55:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\.Torrent Swapper
[2011-01-06 15:20:21 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Adobe
[2007-12-04 18:18:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AdobeUM
[2010-01-25 12:45:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Ahead
[2010-10-26 19:14:35 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Alawar
[2011-02-14 17:19:16 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\AppClient
[2011-09-19 12:49:46 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Apple Computer
[2007-08-28 21:25:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ATI
[2009-09-27 19:53:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Blue Cat Audio
[2010-12-15 15:53:47 | 000,000,000 | R--D | M] -- C:\Users\Kuba\AppData\Roaming\Brother
[2008-03-26 22:35:10 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Daoisoft
[2010-04-12 21:51:22 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\DivX
[2008-02-16 15:12:14 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Hamachi
[2011-06-10 14:38:13 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ
[2007-08-23 19:09:07 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ Toolbar
[2007-08-23 13:13:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Identities
[2007-09-06 15:46:46 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InstallShield
[2007-08-24 15:43:45 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Intel
[2010-06-29 10:53:42 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\InterTrust
[2009-01-14 11:36:29 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\LangSoft
[2009-03-13 11:03:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Leawo
[2007-11-05 22:28:54 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Locktime
[2007-08-23 13:15:03 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Macromedia
[2009-02-26 18:59:05 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Malwarebytes
[2010-03-16 22:39:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Maxthon2
[2006-11-02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Media Center Programs
[2011-02-14 17:38:33 | 000,000,000 | --SD | M] -- C:\Users\Kuba\AppData\Roaming\Microsoft
[2010-01-29 21:24:47 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MMToolz
[2008-12-24 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Mozilla
[2010-03-16 00:17:09 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\MxBoost
[2007-08-27 20:54:04 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\My Battle for Middle-earth Files
[2007-11-23 16:37:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\NeroDCTemplates
[2009-02-27 17:19:08 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Nokia
[2007-08-23 17:08:17 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Opera
[2007-11-05 23:07:34 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Orbit
[2009-02-27 17:05:20 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PC Suite
[2007-09-01 16:14:11 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\PeerNetworking
[2008-01-10 13:59:52 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Plugin
[2007-09-02 20:15:43 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\QIP
[2010-02-22 13:49:05 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\RealArcade
[2011-05-15 20:15:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Skype
[2011-05-15 19:46:55 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\skypePM
[2011-03-04 14:16:32 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\TomTom
[2010-02-03 09:49:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Winamp
[2007-09-02 20:13:26 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\WinRAR
[2011-01-12 15:08:25 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Xilisoft
< %APPDATA%\*.exe /s >
[2002-08-29 19:33:56 | 000,319,488 | R--- | M] () -- C:\Users\Kuba\AppData\Roaming\MafiaSetup.exe
[2008-09-01 23:33:54 | 002,834,432 | ---- | M] (DOSBox Team) -- C:\Users\Kuba\AppData\Roaming\AppClient\Dosbox\dosbox.exe
[2011-02-17 19:10:25 | 000,336,813 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Fantasy-world-Dizzy\Dizzy3.exe
[2011-02-14 17:19:19 | 000,155,382 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Magicland-Dizzy\Dizzy4.exe
[2011-02-18 11:20:26 | 000,139,639 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\AppClient\Packages\Prince-of-The-Yolkfolk\Dizzy6.exe
[2008-03-25 05:01:44 | 000,078,136 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Maxthon2\maxupdate.exe
[2007-12-04 15:29:48 | 000,120,064 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Maxthon2\SharedAccount\Addon\ScreenCapture\CaptureScreen.exe
[2011-01-12 11:09:12 | 000,029,926 | R--- | M] () -- C:\Users\Kuba\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2009-10-12 08:23:11 | 000,177,024 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\FlashGot.exe
[2008-06-26 19:02:22 | 008,926,832 | ---- | M] (Opera Software ASA ) -- C:\Users\Kuba\AppData\Roaming\Opera\Opera\Opera_950_in_Setup.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2006-11-02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006-11-02 12:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006-11-02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006-11-02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006-11-02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011-09-19 18:38:28 | 000,003,168 | ---- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 18:38:29 | 000,003,168 | ---- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011-09-19 09:22:07 | 000,000,034 | ---- | M] () -- C:\Windows\system32\BD7010.DAT
[2011-09-19 18:45:36 | 000,019,406 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011-09-19 18:45:36 | 000,011,140 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011-09-19 18:45:36 | 000,066,038 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011-09-19 18:45:36 | 000,038,014 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011-09-19 18:45:36 | 000,114,086 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009-04-11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation)
"ehTray.exe" = C:\Windows\ehome\ehTray.exe -- [2008-01-19 09:33:09 | 000,125,952 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4 -- [2011-01-05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.)
"TomTomHOME.exe" = "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2008-01-19 09:33:39 | 000,202,240 | ---- | M] (Microsoft Corporation)
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011-09-19 18:50:11 | 000,000,512 | ---- | M] () MD5=677D53E0ED89E01511B69BC7F49F0E75 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
========== Files - Unicode (All) ==========
[2011-05-26 12:16:09 | 000,000,000 | ---D | M](C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
[2011-05-26 12:16:09 | 000,000,000 | ---D | M](C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
(C:\Users\Kuba\AppData\Roaming\???????sAppData) -- C:\Users\Kuba\AppData\Roaming\敎潲䍄敔灭慬整sAppData
========== Alternate Data Streams ==========
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:CD060F93
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:5BB923A2
< End of report >
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl SRV - File not found [Auto | Stopped] -- -- (wuauserv) SRV - File not found [On_Demand | Stopped] -- -- (UPS) SRV - File not found [Auto | Stopped] -- -- (ERSvc) SRV - File not found [On_Demand | Stopped] -- -- (ClipSrv) SRV - File not found [On_Demand | Stopped] -- -- (CiSvc) IE - HKLM\..\URLSearchHook: - No CLSID value found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php IE - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=" FF - prefs.js..browser.search.selectedEngine: "ICQ Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=" [2011-09-15 19:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-09-14 20:49:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-1.xml [2007-12-18 08:26:16 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-10.xml [2007-12-18 15:05:00 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-11.xml [2007-12-19 23:16:47 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-12.xml [2007-12-20 13:18:52 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-13.xml [2007-12-20 17:31:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-14.xml [2007-12-21 12:21:59 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-15.xml [2007-12-22 19:56:10 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-16.xml [2007-12-22 20:25:01 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-17.xml [2007-12-23 11:28:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-18.xml [2008-02-10 23:57:11 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-19.xml [2007-09-24 17:26:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-2.xml [2008-02-11 23:20:41 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-20.xml [2008-02-13 16:56:18 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-21.xml [2008-02-15 15:53:20 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-22.xml [2008-02-16 09:39:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-23.xml [2008-02-16 16:27:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-24.xml [2008-02-17 23:28:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-25.xml [2008-02-20 22:13:51 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-26.xml [2008-02-21 12:51:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-27.xml [2008-02-22 16:13:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-28.xml [2008-02-22 16:14:55 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-29.xml [2007-10-21 19:29:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-3.xml [2008-02-23 08:31:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-30.xml [2008-02-23 21:16:05 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-31.xml [2008-02-24 09:16:17 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-32.xml [2008-02-24 18:43:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-33.xml [2008-03-27 15:58:43 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-34.xml [2008-03-29 12:48:25 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-35.xml [2008-03-29 19:51:23 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-36.xml [2008-03-29 23:40:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-37.xml [2008-03-30 11:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-38.xml [2008-04-03 12:43:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-39.xml [2007-11-02 22:20:07 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-4.xml [2008-04-07 08:04:45 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-40.xml [2008-04-07 16:10:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-41.xml [2008-04-08 14:57:27 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-42.xml [2008-04-09 15:25:02 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-43.xml [2008-04-10 15:47:44 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-44.xml [2008-04-13 20:42:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-45.xml [2008-04-13 22:47:08 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-46.xml [2008-04-15 12:38:15 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-47.xml [2008-04-19 18:34:56 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-48.xml [2008-04-19 18:42:40 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-49.xml [2007-11-27 15:30:39 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-5.xml [2008-04-19 19:17:21 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-50.xml [2008-06-25 18:41:09 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-51.xml [2008-09-30 21:01:40 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-52.xml [2008-10-01 07:01:35 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-53.xml [2008-11-27 00:09:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-54.xml [2008-12-24 09:55:39 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-55.xml [2009-01-12 11:19:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-56.xml [2009-02-15 14:40:23 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-57.xml [2009-02-15 14:46:27 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-58.xml [2009-03-13 23:17:31 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-59.xml [2007-12-04 12:06:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-6.xml [2009-03-26 20:40:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-60.xml [2009-03-30 10:54:43 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-61.xml [2009-03-30 10:58:29 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-62.xml [2009-05-01 09:12:55 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-63.xml [2009-05-03 00:39:21 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-64.xml [2009-09-03 20:30:56 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-65.xml [2009-10-10 09:28:34 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-66.xml [2009-10-10 20:13:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-67.xml [2009-10-12 08:23:15 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-68.xml [2009-11-30 18:19:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-69.xml [2007-12-05 18:47:46 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-7.xml [2009-12-19 21:07:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-70.xml [2010-01-14 17:10:51 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-71.xml [2010-02-20 17:12:29 | 000,000,961 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-72.xml [2010-03-13 09:04:17 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-73.xml [2010-04-06 16:59:24 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-74.xml [2010-04-08 18:43:22 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-75.xml [2010-07-15 16:57:49 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-76.xml [2010-09-16 19:46:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-77.xml [2010-09-17 05:56:54 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-78.xml [2010-11-08 11:58:57 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-79.xml [2007-12-06 20:44:04 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-8.xml [2010-12-16 15:39:10 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-80.xml [2011-01-14 12:12:01 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-81.xml [2011-03-23 16:38:14 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-82.xml [2011-03-24 11:37:32 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-83.xml [2011-05-16 17:01:16 | 000,000,950 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-84.xml [2007-12-17 22:34:49 | 000,000,951 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-9.xml [2011-08-18 21:40:40 | 000,000,168 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.gif [2011-08-18 21:40:40 | 000,000,618 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.src [2010-06-21 17:35:24 | 000,001,042 | ---- | M] () -- C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.xml O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) O3 - HKLM\..\Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No CLSID value found. O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found. O3 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) O8 - Extra context menu item: Zobrazit originál - Reg Error: Value error. File not found O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...com [@ = ComFile] -- Reg Error: Key error. File not found O37 - HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found [4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [2007-08-23 19:09:07 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\ICQ Toolbar @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh @Alternate Data Stream - 5384 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh @Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:CD060F93 @Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:5BB923A2 :reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"=- "InCD"=- "WinampAgent"=- "Malwarebytes Anti-Malware (reboot)"=- "Adobe Reader Speed Launcher"=- "Adobe ARM"=- "SunJavaUpdateSched"=- "DivXUpdate"=- "QuickTime Task"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"=- "ICQ"=- "TomTomHOME.exe"=- "WMPNSCFG"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=- :files C:\Program Files\ICQ6Toolbar %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivní kontrolu loglistu. Děkuji
All processes killed
========== OTL ==========
Service wuauserv stopped successfully!
Service wuauserv deleted successfully!
Service UPS stopped successfully!
Service UPS deleted successfully!
Service ERSvc stopped successfully!
Service ERSvc deleted successfully!
Service ClipSrv stopped successfully!
Service ClipSrv deleted successfully!
Service CiSvc stopped successfully!
Service CiSvc deleted successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
C:\Program Files\ICQ6Toolbar\ICQToolBar.dll moved successfully.
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Prev Search Bar| /E : value set successfully!
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\StartPageCache| /E : value set successfully!
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from browser.search.defaulturl
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: true removed from browser.search.useDBForOrder
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from keyword.URL
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-34.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-35.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-36.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-37.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-38.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-39.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-40.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-41.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-42.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-43.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-44.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-45.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-46.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-47.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-48.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-49.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-50.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-51.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-52.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-53.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-54.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-55.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-56.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-57.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-58.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-59.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-60.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-61.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-62.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-63.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-64.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-65.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-66.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-67.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-68.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-69.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-70.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-71.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-72.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-73.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-74.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-75.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-76.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-77.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-78.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-79.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-80.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-81.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-82.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-83.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-84.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.gif moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.src moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.xml moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Zobrazit originál\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\ComFile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.com\\|comfile /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\.exe\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\exefile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.exe\\|exefile /E : value set successfully!
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2DF2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP81A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE752.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEEF0.tmp folder deleted successfully.
C:\Windows\Installer\MSI6AC5.tmp deleted successfully.
C:\Windows\Installer\MSI7BC1.tmp deleted successfully.
C:\Windows\Installer\MSIE03D.tmp deleted successfully.
C:\Users\Kuba\AppData\Roaming\ICQ Toolbar folder moved successfully.
ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
ADS C:\ProgramData\TEMP:CD060F93 deleted successfully.
ADS C:\ProgramData\TEMP:5BB923A2 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\InCD deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinampAgent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Malwarebytes Anti-Malware (reboot) deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ehTray.exe deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ICQ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\TomTomHOME.exe deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
========== FILES ==========
C:\Program Files\ICQ6Toolbar folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
User: host
->Temporary Internet Files folder emptied: 0 bytes
User: Kuba
->Temp folder emptied: 260147253 bytes
->Temporary Internet Files folder emptied: 674640022 bytes
->Java cache emptied: 2938188 bytes
->FireFox cache emptied: 59413881 bytes
->Apple Safari cache emptied: 92737536 bytes
->Flash cache emptied: 49738 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 1203297453 bytes
Total Files Cleaned = 2,187.00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: host
User: Kuba
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.29.1 log created on 09192011_200208
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== OTL ==========
Service wuauserv stopped successfully!
Service wuauserv deleted successfully!
Service UPS stopped successfully!
Service UPS deleted successfully!
Service ERSvc stopped successfully!
Service ERSvc deleted successfully!
Service ClipSrv stopped successfully!
Service ClipSrv deleted successfully!
Service CiSvc stopped successfully!
Service CiSvc deleted successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
C:\Program Files\ICQ6Toolbar\ICQToolBar.dll moved successfully.
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Prev Search Bar| /E : value set successfully!
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\StartPageCache| /E : value set successfully!
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from browser.search.defaulturl
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: true removed from browser.search.useDBForOrder
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from keyword.URL
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-34.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-35.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-36.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-37.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-38.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-39.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-40.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-41.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-42.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-43.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-44.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-45.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-46.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-47.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-48.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-49.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-50.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-51.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-52.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-53.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-54.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-55.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-56.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-57.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-58.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-59.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-60.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-61.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-62.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-63.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-64.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-65.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-66.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-67.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-68.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-69.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-70.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-71.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-72.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-73.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-74.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-75.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-76.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-77.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-78.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-79.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-80.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-81.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-82.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-83.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-84.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.gif moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.src moved successfully.
C:\Users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\2e68bddo.default\searchplugins\icqplugin.xml moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ not found.
Registry value HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Zobrazit originál\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\ComFile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.com\\|comfile /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\.exe\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2139762894-2808136389-793043689-1000_Classes\exefile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.exe\\|exefile /E : value set successfully!
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2DF2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP81A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE752.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEEF0.tmp folder deleted successfully.
C:\Windows\Installer\MSI6AC5.tmp deleted successfully.
C:\Windows\Installer\MSI7BC1.tmp deleted successfully.
C:\Windows\Installer\MSIE03D.tmp deleted successfully.
C:\Users\Kuba\AppData\Roaming\ICQ Toolbar folder moved successfully.
ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
ADS C:\ProgramData\TEMP:CD060F93 deleted successfully.
ADS C:\ProgramData\TEMP:5BB923A2 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\InCD deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinampAgent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Malwarebytes Anti-Malware (reboot) deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ehTray.exe deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ICQ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\TomTomHOME.exe deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
========== FILES ==========
C:\Program Files\ICQ6Toolbar folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
User: host
->Temporary Internet Files folder emptied: 0 bytes
User: Kuba
->Temp folder emptied: 260147253 bytes
->Temporary Internet Files folder emptied: 674640022 bytes
->Java cache emptied: 2938188 bytes
->FireFox cache emptied: 59413881 bytes
->Apple Safari cache emptied: 92737536 bytes
->Flash cache emptied: 49738 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 1203297453 bytes
Total Files Cleaned = 2,187.00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: host
User: Kuba
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0.00 mb
OTL by OldTimer - Version 3.2.29.1 log created on 09192011_200208
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Jak se chova PC 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivní kontrolu loglistu. Děkuji
funguje dobře je i rychlejší zdáse ale internet ještě zlobí. při spuštění pc musím restartovat nějaký dhc adaptér.A zdá se že jde internet o něco pomaleji.
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Ještě jeden dotaz proč při spuštění mozili jde cpu na 100%
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Muzete trochu vice popsat prosimseryk píše:fpři spuštění pc musím restartovat nějaký dhc adaptér.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivní kontrolu loglistu. Děkuji
restartovat službu klienta DHCP přesný název
Re: Prosím o preventivní kontrolu loglistu. Děkuji
tohoto klienta musím restatrovat abych mohl spustit internet.Jinek nenajede
Re: Prosím o preventivní kontrolu loglistu. Děkuji
Muzete dat jeste prosim screen te hlasky
Kolik PC mate pripojeno do site
Kolik PC mate pripojeno do site
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivní kontrolu loglistu. Děkuji
Momentálně jeden jinak 2.Hláška není jen se pc nepřipojí tak musím zmáčknout ten malý pc v pravo dole dám diagnostikovat a opravit a najde to chyby nebo možnosti.A když dám restartovat službu klienta DHCP tak internet najede.
Přispějete na provoz fóra?