VIRY.CZ

Ahoj,

můžu poprosit o pomoc?
již asi měsím mi nejde otevřít youtube, chvilku nešel ani google a facebook. Ty už zase nějak chodí, ale youtube ne.

zkoušel jsem avast a nic nenašel.
mohu hodit log?

děkuju za pomoc,

Honza,

Logfile of random's system information tool 1.09 (written by random/random)
Run by John at 2011-11-16 17:27:35
Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (7%) free of 55 GB
Total RAM: 2046 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:27:54, on 16.11.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Programy\Avast5\AvastSvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Programy\virtual deamon\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe
C:\Programy\Maxtor\OneTouch Status\maxmenumgr.exe
C:\Programy\iTunes\iTunesHelper.exe
C:\Programy\Avast5\avastUI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\RC.exe
C:\Programy\Yahoo!\Widgets\YahooWidgets.exe
C:\Programy\Yahoo!\Widgets\YahooWidgets.exe
C:\Programy\Yahoo!\Widgets\YahooWidgets.exe
C:\Documents and Settings\John\Local Settings\Application Data\Yahoo\Widget Engine\Unzipped\SimpleMonitor.widget\SimpleMonitor-1.0.5.widget\Contents\resources\exe\SimpleMonitor.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Acer\Empowering Technology\admServ.exe
C:\Program Files\Bonjour\mDNSResponder.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\cisvc.exe
C:\Programy\Maxtor\Sync\SyncServices.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Programy\Photodex\ProShowGold\ScsiAccess.exe
C:\WINDOWS\system32\svchost.exe
C:\Programy\SPEEDB~1\VideoAcceleratorService.exe
C:\Programy\SPEEDB~1\VideoAcceleratorEngine.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\John\Local Settings\Temporary Internet Files\Content.IE5\WJPYS1VK\RSIT[1].exe
C:\Program Files\trend micro\John.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\Programy\DAP\DAPIEL~1.DLL
O3 - Toolbar: Acer eDataSecurity Management - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - C:\WINDOWS\system32\ToolBand.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programy\virtual deamon\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SpeedBitVideoAccelerator] "C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [mxomssmenu] "C:\Programy\Maxtor\OneTouch Status\maxmenumgr.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programy\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programy\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast5] C:\Programy\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RC.exe.lnk = C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\RC.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Programy\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Programy\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Clean Traces - C:\Programy\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Programy\DAP\dapextie.htm
O8 - Extra context menu item: &Sample Toolband Serach - res://C:\WINDOWS\system32\ToolBand.dll/MENUSEARCH.HTM
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download &all with DAP - C:\Programy\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Programy\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {55963676-2F5E-4BAF-AC28-CF26AA587566} (Cisco AnyConnect VPN Client Web Control) - https://vpn.mze.cz/CACHE/stc/3/binaries/vpnweb.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C3D76518-4263-4CFE-98F8-DB567C9A0682}: NameServer = 93.153.117.1,93.153.117.33
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Programy\Avast5\AvastSvc.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - C:\Programy\Maxtor\Sync\SyncServices.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Programy\Photodex\ProShowGold\ScsiAccess.exe
O23 - Service: VideoAcceleratorEngine - Speedbit Ltd. - C:\Programy\SPEEDB~1\VideoAcceleratorEngine.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\Programy\SPEEDB~1\VideoAcceleratorService.exe
O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe

--
End of file - 13092 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Low Battery Alarm Program.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
DAPIELoader Class - C:\Programy\DAP\DAPIEL~1.DLL [2009-03-27 140880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - Acer eDataSecurity Management - C:\WINDOWS\system32\ToolBand.dll [2005-10-19 94208]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"=Alaunch []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2005-11-16 15600128]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2005-11-02 102491]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-11-02 692315]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-08-12 45056]
"eDataSecurity Loader"=C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe [2005-10-19 69632]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"ePower_DMC"=C:\Acer\Empowering Technology\ePower\ePower_DMC.exe [2006-01-17 344064]
"Acer ePower Management"=C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe [2006-01-16 3080192]
"LManager"=C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2005-12-06 458752]
"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-11-16 397312]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2005-11-30 225280]
"LogitechCameraAssistant"=C:\Program Files\Acer\OrbiCam\CameraAssistant.exe [2005-11-29 438272]
"LogitechVideo[inspector]"=C:\Program Files\Acer\OrbiCam\InstallHelper.exe [2005-11-29 73728]
"LogitechCameraService(E)"=C:\WINDOWS\system32\ElkCtrl.exe [2004-11-01 262144]
"ADMTray.exe"=C:\Acer\Empowering Technology\admtray.exe [2005-10-24 2462208]
"DAEMON Tools-1033"=C:\Programy\virtual deamon\daemon.exe [2004-08-22 81920]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2007-01-14 185896]
"SpeedBitVideoAccelerator"=C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe [2008-01-05 2188912]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]
"mxomssmenu"=C:\Programy\Maxtor\OneTouch Status\maxmenumgr.exe [2008-07-21 169312]
"QuickTime Task"=C:\Programy\QuickTime\qttask.exe [2009-11-10 417792]
"iTunesHelper"=C:\Programy\iTunes\iTunesHelper.exe [2010-02-15 141608]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"avast5"=C:\Programy\Avast5\avastUI.exe [2011-09-06 3722416]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Microsoft Office.lnk - C:\Programy\Microsoft Office\Office10\OSA.EXE

C:\Documents and Settings\John\Start Menu\Programs\Startup
RC.exe.lnk - C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\RC.exe
Yahoo! Widgets.lnk - C:\Programy\Yahoo!\Widgets\YahooWidgets.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-12-01 47104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Programy\DAP\DAP.EXE"="C:\Programy\DAP\DAP.EXE:*:Enabled:Download Accelerator Plus (DAP)"
"C:\Programy\ICQ6\ICQ.exe"="C:\Programy\ICQ6\ICQ.exe:*:Enabled:ICQ Library"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Programy\Iphone\Air Cam\AirCamWin.exe"="C:\Programy\Iphone\Air Cam\AirCamWin.exe:*:Enabled:Air Cam Live Video - PC Control"
"C:\Programy\Iphone\Remote PC Suite (ovladani PC)\RemotePC.exe"="C:\Programy\Iphone\Remote PC Suite (ovladani PC)\RemotePC.exe:*:Enabled:Remote PC Suite"
"C:\Programy\uTorrent\utorrent.exe"="C:\Programy\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe"="C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe:*:Enabled:VideoAccelerator"
"C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe"="C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe:*:Enabled:VideoAcceleratorService"
"C:\Programy\iTunes\iTunes.exe"="C:\Programy\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.sl_anet"=sl_anet.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"MSVideo"=vfwwdm32.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.ffds"=ffdshow.ax
"msacm.ac3filter"=ac3filter.acm

======List of files/folders created in the last 1 month======

2011-11-16 17:27:35 ----D---- C:\rsit
2011-11-16 17:27:35 ----D---- C:\Program Files\trend micro
2011-11-16 16:56:17 ----A---- C:\WINDOWS\system32\javaws.exe
2011-11-16 16:56:17 ----A---- C:\WINDOWS\system32\javaw.exe
2011-11-16 16:56:17 ----A---- C:\WINDOWS\system32\java.exe
2011-11-04 17:24:59 ----D---- C:\Program Files\Microsoft Silverlight

======List of files/folders modified in the last 1 month======

2011-11-16 16:55:18 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-16 16:03:34 ----A---- C:\WINDOWS\system32\eRLog.ini
2011-11-16 13:31:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-10-27 18:06:36 ----A---- C:\WINDOWS\PCTools.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 d347bus;d347bus; C:\WINDOWS\system32\DRIVERS\d347bus.sys [2004-08-22 155136]
R0 d347prt;d347prt; C:\WINDOWS\System32\Drivers\d347prt.sys [2004-08-22 5248]
R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-08-04 61056]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 36096]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R1 OsaFsLoc;OsaFsLoc; \??\C:\WINDOWS\system32\drivers\OsaFsLoc.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-03 8832]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.9.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2006-08-29 21275]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
R2 EpmPsd;Acer EPM Power Scheme Driver; \??\C:\WINDOWS\system32\drivers\epm-psd.sys []
R2 EpmShd;Acer EPM System Hardware Driver; \??\C:\WINDOWS\system32\drivers\epm-shd.sys []
R2 Ethpdrv;Ethernet Packet Driver; C:\WINDOWS\system32\DRIVERS\ethpdrv.sys [2005-09-08 9728]
R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-03 87424]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 osaio;osaio; \??\C:\WINDOWS\system32\drivers\osaio.sys []
R2 osanbm;osanbm; \??\C:\WINDOWS\system32\drivers\osanbm.sys []
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2005-11-28 13568]
R2 sbbotdi;sbbotdi; \??\C:\PROGRAMY\SPEEDB~1\sbbotdi.sys []
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-12-01 1412608]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-04-05 132352]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2005-12-02 854826]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2004-08-04 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-11-17 4069888]
R3 LVPrcMon;Logitech LVPrcMon Driver; \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys []
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 NdisFilt;OSA NdisFilter Protocol; C:\WINDOWS\System32\Drivers\NdisFilt.sys [2005-09-13 4392]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-07-24 6144]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2007-05-05 10368]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-11-02 191456]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-06-22 162176]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-05 1428096]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 APLMp50;APLMp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\APLMp50.sys [2006-11-29 28224]
S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2005-12-02 328141]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2005-12-02 30363]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-04 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-04 100992]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-04 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2005-12-02 148488]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2005-12-02 45475]
S3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2005-12-02 30221]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2005-12-02 65016]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DCamUSBEMPIA;USB 2861 Video; C:\WINDOWS\system32\DRIVERS\emDevice.sys [2007-06-21 171136]
S3 emAudio;USB EMP Audio Device; C:\WINDOWS\system32\drivers\emAudio.sys [2007-06-12 20736]
S3 ENUM1394;%1394\031887&040892.DeviceDesc%; C:\WINDOWS\system32\DRIVERS\enum1394.sys [2001-08-17 6400]
S3 FiltUSBEMPIA;USB Device Lower Filter; C:\WINDOWS\system32\DRIVERS\emFilter.sys [2007-06-21 5248]
S3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-11-08 997376]
S3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-11-08 202240]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter; C:\WINDOWS\system32\DRIVERS\ipwpnet.sys [2005-07-30 43184]
S3 lv321av;Logitech USB PC Camera (VC0321); C:\WINDOWS\System32\Drivers\lv321av.sys [2005-11-30 1088896]
S3 lvmvdrv;Logitech Machine Vision Engine Loader; \??\C:\WINDOWS\system32\drivers\lvmvdrv.sys []
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-11-30 39424]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 MXOPSWD;Maxtor OneTouch Security Driver; C:\WINDOWS\system32\DRIVERS\mxopswd.sys [2007-05-03 22152]
S3 n558;N558 Bluetooth USB Filter Driver; C:\WINDOWS\System32\Drivers\n558.sys [2007-08-15 9600]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\WINDOWS\system32\DRIVERS\netaapl.sys [2009-05-29 17408]
S3 NETMNT;Acer NetMonitor Protocol; C:\WINDOWS\system32\DRIVERS\NETMNT.sys [2005-05-02 9600]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
S3 nm;Network Monitor Driver; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-04 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-01-25 42000]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-04 59648]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-04 5888]
S3 ScanUSBEMPIA;USB Still Image Capture Device; C:\WINDOWS\system32\DRIVERS\emScan.sys [2007-06-21 5120]
S3 Ser2pl;Prolific Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 SMCIRDA;SMSC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2004-12-09 46592]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-05-29 39424]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 vpnva;Cisco AnyConnect VPN Virtual Miniport Adapter for Windows; C:\WINDOWS\system32\DRIVERS\vpnva.sys [2009-02-03 20152]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WDM_Capture_225;Digital-TV Receiver.; C:\WINDOWS\System32\Drivers\WDM_Capture_225.sys [2006-03-20 19328]
S3 WDM_Loader_225;DVB-T TV; C:\WINDOWS\System32\Drivers\WDM_Loader_225.sys [2006-06-05 17024]
S3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-11-08 723712]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2004-08-03 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2004-08-03 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2004-08-03 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2004-08-03 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2004-08-04 13952]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2004-08-03 41088]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-03 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-12-01 393216]
R2 avast! Antivirus;avast! Antivirus; C:\Programy\Avast5\AvastSvc.exe [2011-09-06 44768]
R2 AWService;AdminWorks Agent X6; C:\Acer\Empowering Technology\admServ.exe [2005-10-24 1314816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2005-12-02 266295]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2005-11-28 114753]
R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 LVPrcSrv;Logitech Process Monitor; c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe [2005-11-30 81920]
R2 Maxtor Sync Service;Maxtor Service; C:\Programy\Maxtor\Sync\SyncServices.exe [2008-07-21 193888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2005-11-28 217164]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-06-01 196708]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2005-11-28 540745]
R2 ScsiAccess;ScsiAccess; C:\Programy\Photodex\ProShowGold\ScsiAccess.exe [2008-01-30 181312]
R2 VideoAcceleratorService;VideoAcceleratorService; C:\Programy\SPEEDB~1\VideoAcceleratorService.exe [2008-01-05 206456]
R2 vpnagent;Cisco AnyConnect VPN Agent; C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2009-02-03 427192]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-02-15 545576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-24 135664]
S2 VideoAcceleratorEngine;VideoAcceleratorEngine; C:\Programy\SPEEDB~1\VideoAcceleratorEngine.exe [2008-01-05 136824]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-24 135664]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2007-01-25 93048]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Dobrý večer

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Tak jsem to oskenoval a vyjel jeden vir - je to ten problemovy?

Dekuji, h.

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Verze databáze: 8206

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

21.11.2011 11:18:13
mbam-log-2011-11-21 (11-18-01).txt

Typ kontroly: Rychlý test
Testované objekty: 182773
Uplynulý čas: 5 minut, 15 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 1
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Smažte ho.

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

/md5start
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
hal.dll
logevent.dll
netlogon.dll
ntelogon.dll
scecli.dll
sceclt.dll
ws2_32.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
cdrom.sys
Changer.sys
fastfat.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
mv61xx.sys
ndis.sys
ntfs.sys
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
symmpi.sys
tcpip.sys
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
/md5stop

C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe


HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

Dobrý večer, takže smazáno, OTL nainstalováno a dle instrukcí přeskenováno:

OTL Extras logfile created on: 21.11.2011 16:39:32 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\John\Desktop\SCAN PC
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,36 Gb Available Physical Memory | 67,88% Memory free
3,85 Gb Paging File | 3,24 Gb Available in Paging File | 84,34% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,69 Gb Total Space | 3,46 Gb Free Space | 6,45% Space Free | Partition Type: FAT32
Drive D: | 54,18 Gb Total Space | 7,47 Gb Free Space | 13,78% Space Free | Partition Type: FAT32

Computer Name: ACER | User Name: John | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programy\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Programy\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Programy\ACD Systems\ACDSee\ACDSee.exe" "%1" (ACD Systems, Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Programy\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Programy\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Programy\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programy\DAP\DAP.EXE" = C:\Programy\DAP\DAP.EXE:*:Enabled:Download Accelerator Plus (DAP) -- (SpeedBit Ltd.)
"C:\Programy\ICQ6\ICQ.exe" = C:\Programy\ICQ6\ICQ.exe:*:Enabled:ICQ Library -- (ICQ, Inc.)
"C:\Programy\Iphone\Air Cam\AirCamWin.exe" = C:\Programy\Iphone\Air Cam\AirCamWin.exe:*:Enabled:Air Cam Live Video - PC Control -- (Senstic)
"C:\Programy\Iphone\Remote PC Suite (ovladani PC)\RemotePC.exe" = C:\Programy\Iphone\Remote PC Suite (ovladani PC)\RemotePC.exe:*:Enabled:Remote PC Suite -- (Egor Pushkin)
"C:\Programy\uTorrent\utorrent.exe" = C:\Programy\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe" = C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe:*:Enabled:VideoAccelerator -- (Speedbit Ltd.)
"C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe" = C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe:*:Enabled:VideoAcceleratorService -- (Speedbit Ltd.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{15B70821-7893-4607-805A-BB80F3EA8279}" = Acer Empowering Technology framework
"{18A5DFF2-8A95-49F3-873F-743CB5549F3D}" = Canon ScanGear Starter
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{24BA79B5-53F9-475C-9D49-EC4BDE8B09CF}" = Notebook Interactive Viewer
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 29
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel
"{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}" = DAEMON Tools
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4D36E953-4456-4F8F-BC44-90BC4AA59889}" = Maxtor Manager
"{4D6FC0A8-37D6-45FE-A5D0-67A995AA082C}" = USB Video/Audio Driver
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5EFDFC8B-D438-4792-A298-E87AA9ADA816}" = Acer eDataSecurity Management
"{6005535D-8A83-4108-A757-E1AB9886AECA}" = Cisco AnyConnect VPN Client
"{642FCF93-54AE-4F75-A2E2-124DE3756C59}" = ATI Catalyst Control Center
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6CA897D0-67F5-4F75-8261-DC8BFCA6DA42}" = Acer eLock Management
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76AC1AEB-1167-4ABC-8861-4E58392A5B7F}" = Acer OrbiCam Software
"{81063354-9060-42B2-A000-1EBE96778AA9}" = iTunes
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A72FC039-FE41-4BAD-B36E-64368EC54B54}" = ArcSoft MediaConverter 2.5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9FC434F-9950-487C-82F1-E1515FA70DA4}" = ArcSoft ShowBiz DVD 2
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Czech
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C45EB9E5-7165-4FB0-8C31-77FC4743362F}" = Manual CanoScan LiDE 25
"{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}" = Canon CanoScan Toolbox 4.9
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0194539-8118-4FD7-8ABA-912B2D479B48}" = Ulead Photo Explorer 6.0
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow! 1.0
"{D3F9E8F4-70D6-4F0C-9E4A-2E196A889177}" = NaviGuide Hungary 4.5
"{DEE08946-40F0-4890-853E-60A6C3306041}" = Acer ePerformance Management
"{DF4B49A6-C31A-4D68-8983-505EC9334A63}" = Garmin MapSource
"{DF4E46F4-B5DE-4578-9617-C6ECBEFE385D}" = Air Cam
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E38BC648-883B-4EE5-966C-94C4B7AB3E0B}" = Acer eSettings Management
"{E431C518-2EE2-471E-9234-BE995C36D513}" = Acer eDataSecurity Management 1.00.23
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1705BC9-D392-4502-9130-224BF0760952}" = Activstudio Flipchart Viewer v3.0.2436
"{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}" = SMSC CIR HID V5.3.2600.2
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"{FF6F491D-BC82-4DCC-A72F-1824957C6466}" = TIxx21
"µTorrent CZ_is1" = µTorrent CZ 1.8.4 (build 16150)
"7-Zip" = 7-Zip 9.15 beta
"ACDSee Trial" = ACDSee Trial
"AcerOrbiCamDrv" = Acer OrbiCam Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"All ATI Software" = ATI - Software Uninstall Utility
"AskPBar Uninstall" = Ask Toolbar
"ATI Display Driver" = ATI Display Driver
"avast" = avast! Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"CNXT_MODEM_HDAUDIO_AcrS1025" = HDAUDIO Soft Data Fax Modem with SmartCP
"Crystal Player" = Crystal Player Professional 1.98
"Czech TOPO 50 (GPS maps)" = Czech TOPO 50 (GPS maps)
"Download Accelerator Plus (DAP)" = Download Accelerator Plus (DAP)
"DTV_1.0" = Yakumo QuickStick Basic DVB-T
"ePresentation" = Acer ePresentation Management
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Fast Resize eX_is1" = Fast Resize eX
"GridVista" = Acer GridVista
"HandBrake" = HandBrake 0.9.3
"HUFFYUV" = Huffyuv AVI lossless video codec (Remove Only)
"IDL7000 PC Suite" = IDL7000 PC Suite
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"InstallShield_{15B70821-7893-4607-805A-BB80F3EA8279}" = Acer Empowering Technology framework
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{4D36E953-4456-4F8F-BC44-90BC4AA59889}" = Maxtor Manager
"InstallShield_{4D6FC0A8-37D6-45FE-A5D0-67A995AA082C}" = USB Video/Audio Driver
"InstallShield_{6CA897D0-67F5-4F75-8261-DC8BFCA6DA42}" = Acer eLock Management
"InstallShield_{DEE08946-40F0-4890-853E-60A6C3306041}" = Acer ePerformance Management
"InstallShield_{E38BC648-883B-4EE5-966C-94C4B7AB3E0B}" = Acer eSettings Management
"InstallShield_{FF6F491D-BC82-4DCC-A72F-1824957C6466}" = Texas Instruments PCIxx21/x515 drivers.
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Pdf995" = Pdf995
"Photodex Presenter" = Photodex Presenter
"Picasa 3" = Picasa 3
"ProInst" = Intel(R) PROSet/Wireless Software
"ProShow Gold" = ProShow Gold
"RealPlayer 6.0" = RealPlayer
"Remote PC Suite" = Remote PC Suite 1.2
"Samsung CLX-216x Series" = Samsung CLX-216x Series
"SpeedBit Video Accelerator" = SpeedBit Video Accelerator
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"The KMPlayer" = The KMPlayer (remove only)
"UnixUtils for Yahoo! Widgets" = Unix Utilities for Yahoo! Widgets
"VeryPDF PDF2Word v3.0_is1" = VeryPDF PDF2Word v3.0
"Video Converter 3" = Video Converter 3
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WIC" = Windows Imaging Component
"Winamp" = Winamp (Remove Only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinPcapInst" = WinPcap 4.0
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XP Codec Pack" = XP Codec Pack
"Yahoo! Widget Engine" = Yahoo! Widgets
"YInstHelper" = Yahoo! Install Manager

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 5.7.2009 6:28:00 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 5.7.2009 6:28:00 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 5.7.2009 6:28:00 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 10.9.2009 4:21:10 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 10.9.2009 4:28:47 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 10.9.2009 11:27:52 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 10.9.2009 11:27:53 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 9.3.2010 16:57:39 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 9.3.2010 16:57:39 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

Error - 9.3.2010 16:57:39 | Computer Name = ACER | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 12.11.2011 9:32:25 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 13.11.2011 10:51:49 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 15.11.2011 8:55:03 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 16.11.2011 4:59:14 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 16.11.2011 7:51:47 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 16.11.2011 11:02:20 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 17.11.2011 4:18:38 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 18.11.2011 4:21:11 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 21.11.2011 5:59:52 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 21.11.2011 9:11:28 | Computer Name = ACER | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

[ Cisco AnyConnect VPN Client Events ]
Error - 22.9.2011 15:33:08 | Computer Name = ACER | Source = vpnagent | ID = 50331650
Description = Termination reason code 9: Client PC is shutting down.

Error - 22.9.2011 15:33:08 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: CVpnMgr::processEvents Return code: 0 File: .\MainThread.cpp
Line:
997 Description: fatal error, stopping service

Error - 17.10.2011 12:02:43 | Computer Name = ACER | Source = vpnagent | ID = 50331650
Description = Termination reason code 9: Client PC is shutting down.

Error - 17.10.2011 12:02:43 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: CVpnMgr::processEvents Return code: 0 File: .\MainThread.cpp
Line:
997 Description: fatal error, stopping service

Error - 21.10.2011 5:48:21 | Computer Name = ACER | Source = vpnagent | ID = 50331650
Description = Termination reason code 9: Client PC is shutting down.

Error - 21.10.2011 5:48:21 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: CVpnMgr::processEvents Return code: 0 File: .\MainThread.cpp
Line:
997 Description: fatal error, stopping service

Error - 21.10.2011 5:48:22 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: WaitForSingleObject Return code: 6 File: .\Agent.cpp Line:
686 Description: The handle is invalid.

Error - 26.10.2011 6:03:55 | Computer Name = ACER | Source = vpnagent | ID = 50331650
Description = Termination reason code 9: Client PC is shutting down.

Error - 26.10.2011 6:03:55 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: CVpnMgr::processEvents Return code: 0 File: .\MainThread.cpp
Line:
997 Description: fatal error, stopping service

Error - 26.10.2011 6:03:55 | Computer Name = ACER | Source = vpnagent | ID = 50331649
Description = Function: WaitForSingleObject Return code: 6 File: .\Agent.cpp Line:
686 Description: The handle is invalid.

[ System Events ]
Error - 18.11.2011 4:22:19 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 18.11.2011 4:22:19 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The SSPORT service failed to start due to the following error: %%2

Error - 18.11.2011 4:22:19 | Computer Name = ACER | Source = Service Control Manager | ID = 7034
Description = The VideoAcceleratorEngine service terminated unexpectedly. It has
done this 1 time(s).

Error - 18.11.2011 5:32:37 | Computer Name = ACER | Source = ipnathlp | ID = 32003
Description = The Network Address Translator (NAT) was unable to request an operation
of
the kernel-mode translation module. This may indicate misconfiguration, insufficient
resources, or an internal error. The data is the error code.

Error - 21.11.2011 6:00:59 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 21.11.2011 6:00:59 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The SSPORT service failed to start due to the following error: %%2

Error - 21.11.2011 6:01:02 | Computer Name = ACER | Source = Service Control Manager | ID = 7034
Description = The VideoAcceleratorEngine service terminated unexpectedly. It has
done this 1 time(s).

Error - 21.11.2011 9:12:30 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 21.11.2011 9:12:30 | Computer Name = ACER | Source = Service Control Manager | ID = 7000
Description = The SSPORT service failed to start due to the following error: %%2

Error - 21.11.2011 9:12:30 | Computer Name = ACER | Source = Service Control Manager | ID = 7034
Description = The VideoAcceleratorEngine service terminated unexpectedly. It has
done this 1 time(s).

< End of report >

Tak mne to nechce pustit přes limit znaků, dávám jako přílohu. Děkuji že si na mne děláte čas, Honza

Aha, tak to nepustí ani když změním název přípony..

Mám to tedy zabalit, nebo rozdělit na dva texty?

Rozdělit na dvě části

NOjo no

takže první část OTL:

OTL logfile created on: 21.11.2011 16:39:32 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\John\Desktop\SCAN PC
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,36 Gb Available Physical Memory | 67,88% Memory free
3,85 Gb Paging File | 3,24 Gb Available in Paging File | 84,34% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,69 Gb Total Space | 3,46 Gb Free Space | 6,45% Space Free | Partition Type: FAT32
Drive D: | 54,18 Gb Total Space | 7,47 Gb Free Space | 13,78% Space Free | Partition Type: FAT32

Computer Name: ACER | User Name: John | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.11.21 16:35:40 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\John\Desktop\SCAN PC\OTL.exe
PRC - [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Programy\Avast5\AvastUI.exe
PRC - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Programy\Avast5\AvastSvc.exe
PRC - [2009.06.19 20:48:32 | 000,123,392 | ---- | M] (Viktoras Agejevas) -- C:\Documents and Settings\John\Local Settings\Application Data\Yahoo\Widget Engine\Unzipped\SimpleMonitor.widget\SimpleMonitor-1.0.5.widget\Contents\resources\exe\SimpleMonitor.exe
PRC - [2009.02.03 22:39:10 | 000,427,192 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
PRC - [2008.07.21 16:54:34 | 000,169,312 | ---- | M] (Maxtor Corporation) -- C:\Programy\Maxtor\OneTouch Status\MaxMenuMgr.exe
PRC - [2008.07.21 16:53:04 | 000,193,888 | ---- | M] (Seagate Technology LLC) -- C:\Programy\Maxtor\Sync\SyncServices.exe
PRC - [2008.03.19 01:31:20 | 004,742,184 | ---- | M] (Yahoo! Inc.) -- C:\Programy\Yahoo!\Widgets\YahooWidgets.exe
PRC - [2008.01.30 03:02:20 | 000,181,312 | ---- | M] () -- C:\Programy\Photodex\ProShowGold\scsiaccess.exe
PRC - [2008.01.05 02:57:20 | 002,188,912 | ---- | M] (Speedbit Ltd.) -- C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe
PRC - [2008.01.05 02:57:20 | 000,206,456 | ---- | M] (Speedbit Ltd.) -- C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorService.exe
PRC - [2008.01.05 02:57:20 | 000,136,824 | ---- | M] (Speedbit Ltd.) -- C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe
PRC - [2007.06.13 12:23:08 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.01.14 04:48:30 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2006.03.15 07:43:00 | 000,045,056 | ---- | M] (Computer & Entertainment, Inc.) -- C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\RC.exe
PRC - [2006.01.17 18:28:54 | 000,344,064 | ---- | M] (Acer Incorporated) -- C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2005.12.06 17:11:24 | 000,458,752 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2005.12.02 14:30:42 | 000,618,557 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2005.11.30 20:45:10 | 000,081,920 | ---- | M] (Logitech) -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe
PRC - [2005.11.30 20:39:58 | 000,225,280 | ---- | M] (Logitech) -- C:\WINDOWS\system32\LVCOMSX.EXE
PRC - [2005.11.29 14:45:06 | 000,438,272 | ---- | M] (Acer) -- C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
PRC - [2005.11.16 17:00:50 | 000,397,312 | ---- | M] (acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\Monitor.exe
PRC - [2005.11.02 00:11:00 | 000,102,491 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2005.10.24 16:45:32 | 002,462,208 | ---- | M] (Avocent Inc.) -- C:\Acer\Empowering Technology\admtray.exe
PRC - [2005.10.24 16:40:52 | 001,314,816 | ---- | M] (Avocent Inc.) -- C:\Acer\Empowering Technology\admServ.exe
PRC - [2005.10.19 09:30:16 | 000,069,632 | ---- | M] (HiTRUST) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
PRC - [2005.08.12 14:43:58 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2004.11.01 17:22:22 | 000,262,144 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\ElkCtrl.exe
PRC - [2004.08.22 17:05:02 | 000,081,920 | ---- | M] (DAEMON'S HOME) -- C:\Programy\virtual deamon\daemon.exe

========== Modules (No Company Name) ==========

MOD - [2011.11.21 09:47:44 | 001,618,432 | ---- | M] () -- C:\Programy\Avast5\defs\11112100\algo.dll
MOD - [2011.11.15 12:59:54 | 000,241,528 | ---- | M] () -- C:\Programy\Avast5\defs\11112100\aswRep.dll
MOD - [2010.06.11 16:15:38 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_ed5600c5\mscorlib.dll
MOD - [2010.06.11 16:15:34 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_43644d9e\system.drawing.dll
MOD - [2010.06.11 16:15:22 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_5a0e05cc\system.xml.dll
MOD - [2010.06.11 16:15:14 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_416da2f2\system.windows.forms.dll
MOD - [2010.06.11 16:14:54 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_af1bbcff\system.dll
MOD - [2010.06.11 16:14:34 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2010.06.11 16:14:32 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2009.11.03 15:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009.11.03 15:51:26 | 000,039,712 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MOD - [2008.06.25 11:28:48 | 000,051,716 | ---- | M] () -- C:\WINDOWS\system32\pdf995mon.dll
MOD - [2008.03.19 01:21:48 | 000,094,208 | ---- | M] () -- C:\Programy\Yahoo!\Widgets\jsd.dll
MOD - [2008.03.19 01:21:20 | 000,512,000 | ---- | M] () -- C:\Programy\Yahoo!\Widgets\js32.dll
MOD - [2008.02.25 18:41:08 | 000,022,723 | ---- | M] () -- C:\WINDOWS\system32\cx21sl3.dll
MOD - [2008.01.30 03:02:20 | 000,181,312 | ---- | M] () -- C:\Programy\Photodex\ProShowGold\scsiaccess.exe
MOD - [2008.01.08 23:50:10 | 000,349,147 | ---- | M] () -- C:\Programy\Yahoo!\Widgets\sqlite3.dll
MOD - [2006.04.07 09:51:56 | 000,061,440 | ---- | M] () -- C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\WVHWLink.dll
MOD - [2005.12.02 14:31:56 | 000,053,248 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2005.11.28 11:59:16 | 000,876,544 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\Libeay32.dll
MOD - [2005.11.28 11:59:16 | 000,208,965 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2005.11.28 11:59:16 | 000,053,322 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
MOD - [2005.10.20 17:20:24 | 000,208,896 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\DialogDLL.dll
MOD - [2005.10.11 13:18:54 | 000,028,672 | ---- | M] () -- C:\Acer\Empowering Technology\ePower\SysHook.dll
MOD - [2005.09.05 16:31:56 | 000,229,472 | ---- | M] () -- C:\Acer\Empowering Technology\NetMonitor.dll
MOD - [2005.08.24 01:24:00 | 000,010,752 | ---- | M] () -- C:\WINDOWS\system32\MSNChatHook.dll
MOD - [2005.07.24 23:45:12 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2005.07.24 23:45:10 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2005.07.24 23:45:10 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2005.07.24 23:45:10 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2005.07.24 23:45:08 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2005.07.06 13:50:14 | 000,057,344 | ---- | M] () -- C:\Program Files\Launch Manager\HokHIDKC.dll
MOD - [2004.08.22 17:04:56 | 000,069,120 | ---- | M] () -- C:\WINDOWS\daemon.dll
MOD - [2004.08.04 05:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2004.08.04 05:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2003.12.30 21:52:00 | 000,007,168 | ---- | M] () -- C:\Programy\virtual deamon\Plugins\Images\bw5mount.dll
MOD - [2003.12.29 20:45:08 | 000,040,960 | ---- | M] () -- C:\Acer\Empowering Technology\ServiceControl.dll

========== Win32 Services (SafeList) ==========

SRV - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programy\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009.02.03 22:39:10 | 000,427,192 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe -- (vpnagent)
SRV - [2008.07.21 16:53:04 | 000,193,888 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Programy\Maxtor\Sync\SyncServices.exe -- (Maxtor Sync Service)
SRV - [2008.01.30 03:02:20 | 000,181,312 | ---- | M] () [Auto | Running] -- C:\Programy\Photodex\ProShowGold\scsiaccess.exe -- (ScsiAccess)
SRV - [2008.01.05 02:57:20 | 000,206,456 | ---- | M] (Speedbit Ltd.) [Auto | Stopped] -- C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorService.exe -- (VideoAcceleratorService)
SRV - [2008.01.05 02:57:20 | 000,136,824 | ---- | M] (Speedbit Ltd.) [Auto | Stopped] -- C:\Programy\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe -- (VideoAcceleratorEngine)
SRV - [2007.01.25 18:31:34 | 000,093,048 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2005.11.30 20:45:10 | 000,081,920 | ---- | M] (Logitech) [Auto | Running] -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2005.10.24 16:40:52 | 001,314,816 | ---- | M] (Avocent Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\admServ.exe -- (AWService)

========== Driver Services (SafeList) ==========

DRV - [2011.09.06 22:38:06 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 22:37:54 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 22:36:24 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.09.06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.09.06 22:33:12 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.05.29 13:36:06 | 000,017,408 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009.02.03 22:23:48 | 000,020,152 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vpnva.sys -- (vpnva)
DRV - [2008.02.25 18:41:56 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2008.01.05 02:57:20 | 000,035,712 | ---- | M] (SpeedBit Ltd.) [Kernel | Auto | Running] -- C:\Programy\SpeedBit Video Accelerator\sbbotdi.sys -- (sbbotdi)
DRV - [2007.08.15 07:27:18 | 000,009,600 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\n558.sys -- (n558)
DRV - [2007.06.21 17:52:34 | 000,171,136 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emDevice.sys -- (DCamUSBEMPIA)
DRV - [2007.06.21 17:52:24 | 000,005,248 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emFilter.sys -- (FiltUSBEMPIA)
DRV - [2007.06.21 17:52:22 | 000,005,120 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emScan.sys -- (ScanUSBEMPIA)
DRV - [2007.06.12 18:22:42 | 000,020,736 | ---- | M] (Empia Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emAudio.sys -- (emAudio)
DRV - [2007.05.05 13:35:28 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2007.05.03 13:37:08 | 000,022,152 | ---- | M] (Maxtor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxopswd.sys -- (MXOPSWD)
DRV - [2007.01.25 18:31:34 | 000,042,000 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2006.11.29 06:46:24 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\APLMp50.sys -- (APLMp50)
DRV - [2006.06.05 12:48:00 | 000,017,024 | R--- | M] (WideView Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WDM_Loader_225.sys -- (WDM_Loader_225)
DRV - [2006.03.20 10:06:24 | 000,019,328 | R--- | M] (Computer & Entertainment, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WDM_Capture_225.sys -- (WDM_Capture_225)
DRV - [2005.12.05 00:55:30 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel(R)
DRV - [2005.12.02 14:01:28 | 000,328,141 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2005.12.02 13:59:20 | 000,023,271 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
DRV - [2005.12.02 13:57:48 | 000,854,826 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2005.12.02 13:54:56 | 000,030,363 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2005.12.02 13:54:44 | 000,030,221 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2005.12.02 13:54:14 | 000,065,016 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2005.12.02 13:51:28 | 000,148,488 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2005.12.02 13:50:14 | 000,045,475 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2005.12.01 07:49:20 | 001,412,608 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.11.30 20:45:10 | 002,400,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv)
DRV - [2005.11.30 20:45:10 | 000,016,768 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon)
DRV - [2005.11.30 05:28:58 | 001,088,896 | ---- | M] (Logitech) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lv321av.sys -- (lv321av) Logitech USB PC Camera (VC0321)
DRV - [2005.11.30 05:25:06 | 000,039,424 | ---- | M] (Logitech) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2005.11.28 12:09:26 | 000,013,568 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2005.11.17 00:45:40 | 004,069,888 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005.11.08 00:12:18 | 000,997,376 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005.11.08 00:11:34 | 000,202,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005.11.08 00:11:30 | 000,723,712 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005.10.15 18:20:44 | 000,012,106 | ---- | M] (OSA Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\OsaFsLoc.sys -- (OsaFsLoc)
DRV - [2005.09.13 15:34:40 | 000,004,392 | ---- | M] (OSA Technologies) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NdisFilt.sys -- (NdisFilt)
DRV - [2005.09.08 02:18:54 | 000,009,728 | ---- | M] (Gemfor s.r.o.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ethpdrv.sys -- (Ethpdrv)
DRV - [2005.07.30 12:29:50 | 000,043,184 | ---- | M] (IPWireless) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ipwpnet.sys -- (IpwP)
DRV - [2005.06.30 16:58:24 | 000,007,296 | ---- | M] (OSA Technologies, An Avocent Company) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio)
DRV - [2005.06.22 18:16:08 | 000,162,176 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2005.05.02 12:13:42 | 000,009,600 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETMNT.sys -- (NETMNT)
DRV - [2005.04.22 16:57:06 | 000,078,208 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-shd.sys -- (EpmShd)
DRV - [2005.04.22 16:57:06 | 000,004,096 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-psd.sys -- (EpmPsd)
DRV - [2005.04.05 01:38:32 | 000,132,352 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2005.03.03 19:53:58 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.02.23 17:59:56 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.02.23 14:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2005.01.14 15:57:16 | 000,004,010 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm)
DRV - [2005.01.13 14:46:16 | 000,069,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15.sys)
DRV - [2004.12.09 14:54:12 | 000,046,592 | ---- | M] (SMSC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2004.12.03 12:20:42 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004.08.22 16:31:48 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt)
DRV - [2004.08.22 16:31:10 | 000,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\d347bus.sys -- (d347bus)
DRV - [2004.08.04 05:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2003.07.16 14:27:40 | 000,043,264 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2001.08.17 13:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
IE - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programy\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programy\Picasa3 - uploader fotek\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2629: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=2: C:\Documents and Settings\John\Local Settings\Application Data\Google\Update\1.2.121.9\npGoogleOneClick.dll File not found

O1 HOSTS File: ([2004.08.04 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DAPIELoader Class) - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\Programy\DAP\dapieloader.dll (SpeedBit Ltd.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - C:\WINDOWS\system32\ToolBand.dll (HiTRUST)
O3 - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - C:\WINDOWS\system32\ToolBand.dll (HiTRUST)
O3 - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\..\Toolbar\WebBrowser: (Ask Toolbar) - {F4D76F09-7896-458A-890F-E1F05C46069F} - C:\Program Files\AskPBar\bar\1.bin\ASKPBAR.DLL File not found
O4 - HKLM..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe (Acer Value Labs, Taiwan)
O4 - HKLM..\Run: [ADMTray.exe] C:\Acer\Empowering Technology\admtray.exe (Avocent Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [avast5] C:\Programy\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [DAEMON Tools-1033] C:\Programy\virtual deamon\daemon.exe (DAEMON'S HOME)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
O4 - HKLM..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Incorporated)
O4 - HKLM..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe (acer Inc.)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LaunchApp] C:\WINDOWS\Alaunch.exe (Acer Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe (Acer)
O4 - HKLM..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe (Acer)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [mxomssmenu] C:\Programy\Maxtor\OneTouch Status\maxmenumgr.exe (Maxtor Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [SpeedBitVideoAccelerator] C:\Programy\SpeedBit Video Accelerator\VideoAccelerator.exe (Speedbit Ltd.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Programy\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\John\Start Menu\Programs\Startup\RC.exe.lnk = C:\Program Files\DTV\Yakumo QuickStick Basic DVB-T\RC.exe (Computer & Entertainment, Inc.)
O4 - Startup: C:\Documents and Settings\John\Start Menu\Programs\Startup\Yahoo! Widgets.lnk = C:\Programy\Yahoo!\Widgets\YahooWidgets.exe (Yahoo! Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Clean Traces - C:\Programy\DAP\Privacy Package\dapcleanerie.htm ()
O8 - Extra context menu item: &Download with &DAP - C:\Programy\DAP\dapextie.htm ()
O8 - Extra context menu item: &Sample Toolband Serach - C:\WINDOWS\System32\ToolBand.dll (HiTRUST)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Download &all with DAP - C:\Programy\DAP\dapextie2.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Programy\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-1963622470-438435718-3437945424-1005\..Trusted Domains: vurv.cz ([gw] https in Trusted sites)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab (QuickTime Object)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mvadvd.cab (Reg Error: Key error.)
O16 - DPF: {55963676-2F5E-4BAF-AC28-CF26AA587566} https://vpn.mze.cz/CACHE/stc/3/binaries/vpnweb.cab (Cisco AnyConnect VPN Client Web Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C3D76518-4263-4CFE-98F8-DB567C9A0682}: DhcpNameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C3D76518-4263-4CFE-98F8-DB567C9A0682}: NameServer = 93.153.117.1,93.153.117.33
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\John\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\John\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005.07.24 23:15:48 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2008.03.01 06:10:08 | 000,000,874 | ---- | M] () - C:\auto-pf-switch.txt -- [ FAT32 ]
O32 - AutoRun File - [2008.03.01 06:09:40 | 000,000,028 | ---- | M] () - C:\AutoAssociate.txt -- [ FAT32 ]
O33 - MountPoints2\{1528ce52-5ca1-11dd-9ad2-467357616e31}\Shell\AutoRun\command - "" = G:\WNW_Start.exe
O33 - MountPoints2\{6ec4a872-58f7-11dd-9acc-00130201aab2}\Shell\AutoRun\command - "" = .\Encryption Tool\MaxtorEncryption.exe
O33 - MountPoints2\{dd037e84-cc89-11dd-9b33-00130201aab2}\Shell - "" = AutoRun
O33 - MountPoints2\{dd037e84-cc89-11dd-9b33-00130201aab2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dd037e84-cc89-11dd-9b33-00130201aab2}\Shell\AutoRun\command - "" = G:\LaunchQW.exe
O33 - MountPoints2\{ecff85e6-0e07-11e0-9ce8-0016361e1b60}\Shell - "" = AutoRun
O33 - MountPoints2\{ecff85e6-0e07-11e0-9ce8-0016361e1b60}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{ecff85e6-0e07-11e0-9ce8-0016361e1b60}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL OECDReports.htm
O34 - HKLM BootExecute: (autocheck autochk /r \??\H:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: VIDC.ACDV - C:\WINDOWS\System32\ACDV.dll (ACD Systems)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ffdshow.ax ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2011.11.21 11:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\John\Application Data\Malwarebytes
[2011.11.21 11:08:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.11.21 11:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.11.21 11:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011.11.21 11:08:45 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.11.16 17:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\John\Desktop\SCAN PC
[2011.11.16 17:27:35 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.16 17:27:35 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.16 16:56:17 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.11.16 16:56:17 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.11.16 16:56:17 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.11.04 17:25:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011.11.04 17:24:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011.11.02 13:26:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\John\Desktop\BE
[2011.10.23 11:26:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\John\kbpki
[2006.12.27 12:10:48 | 000,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys
[2006.12.27 12:10:48 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys
[2004.11.24 20:25:52 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\drvc.dll
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.11.21 16:44:52 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.11.21 15:57:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.21 14:12:44 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.11.21 14:12:44 | 000,000,494 | ---- | M] () -- C:\WINDOWS\System32\eRLog.ini
[2011.11.21 14:12:02 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.21 14:10:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.11.21 14:10:28 | 2145,505,280 | -HS- | M] () -- C:\hiberfil.sys
[2011.11.21 14:09:48 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2011.11.21 11:18:40 | 000,206,848 | ---- | M] () -- C:\Documents and Settings\John\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.20 21:04:00 | 000,002,539 | ---- | M] () -- C:\Documents and Settings\John\Desktop\Microsoft Word.lnk
[2011.11.16 16:59:16 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.10.30 10:57:40 | 000,202,528 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.10.27 18:06:36 | 000,000,378 | ---- | M] () -- C:\WINDOWS\PCTools.INI
[2011.10.24 17:48:08 | 000,000,373 | ---- | M] () -- C:\Documents and Settings\John\Desktop\Vysílání HDO.url
[2011.10.22 20:00:00 | 000,000,186 | ---- | M] () -- C:\Documents and Settings\John\Desktop\Meteorologické údaje VÚRV.url
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.11.21 16:44:51 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.22 19:59:58 | 000,000,186 | ---- | C] () -- C:\Documents and Settings\John\Desktop\Meteorologické údaje VÚRV.url
[2010.09.20 15:32:24 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.06.19 15:54:52 | 000,000,378 | ---- | C] () -- C:\WINDOWS\PCTools.INI
[2008.10.13 19:55:48 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\cx21sl3.dll
[2008.10.13 19:40:21 | 000,086,016 | ---- | C] () -- C:\WINDOWS\WiaInst.exe
[2008.08.28 00:10:23 | 000,036,363 | ---- | C] () -- C:\WINDOWS\CSTBox.INI
[2008.08.24 15:08:44 | 910,197,248 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ISxF8.avi
[2008.07.05 12:14:48 | 000,456,192 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2008.07.05 12:14:44 | 003,591,168 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008.07.05 12:13:16 | 000,708,096 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2008.06.25 11:27:44 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini
[2008.06.25 11:24:32 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll
[2008.06.25 11:24:32 | 000,000,059 | ---- | C] () -- C:\WINDOWS\wpd99.drv
[2008.06.22 18:34:00 | 000,177,664 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll
[2008.06.13 12:39:38 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2008.06.12 19:36:38 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008.05.19 13:36:09 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2008.05.19 13:27:17 | 000,000,347 | ---- | C] () -- C:\WINDOWS\pdf2word.INI
[2008.02.28 15:51:21 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2007.10.13 04:39:15 | 000,335,872 | ---- | C] () -- C:\WINDOWS\System32\ldf252.dll
[2007.08.15 07:27:18 | 000,009,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\n558.sys
[2007.05.05 13:58:47 | 000,000,740 | ---- | C] () -- C:\WINDOWS\Ulead32.ini
[2007.04.29 18:34:43 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
[2007.03.19 04:11:30 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\WIASTIIO.dll
[2007.03.19 04:11:24 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\WIAIPH.dll
[2007.03.19 04:11:20 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\WIAEH.dll
[2007.03.19 04:11:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\Sswiadrv.dll
[2007.03.19 04:11:12 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ssuiext.dll
[2007.02.15 15:22:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PhotoNow.INI
[2007.02.12 13:16:15 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2007.01.29 15:25:12 | 000,000,029 | ---- | C] () -- C:\WINDOWS\CDMKR32.INI
[2007.01.28 14:04:39 | 000,001,205 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2007.01.25 18:31:36 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2006.11.02 17:10:16 | 000,080,912 | ---- | C] () -- C:\WINDOWS\System32\sherlock2.exe
[2006.09.12 12:48:46 | 000,000,732 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006.09.11 06:23:02 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2006.09.04 17:01:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Jcmkr32.INI
[2006.09.03 12:57:44 | 000,000,188 | ---- | C] () -- C:\WINDOWS\System32\eDataSecurity.dat
[2006.08.29 19:40:49 | 000,206,848 | ---- | C] () -- C:\Documents and Settings\John\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006.08.29 17:15:24 | 000,000,494 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2006.08.29 17:09:18 | 000,000,719 | R--- | C] () -- C:\WINDOWS\System32\InstExec.ini
[2006.08.29 17:09:15 | 000,013,126 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2006.08.29 17:05:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NT.INI
[2006.08.29 16:59:21 | 000,067,072 | ---- | C] () -- C:\WINDOWS\System32\HTCA_SelfExtract.bin
[2006.08.29 16:59:12 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\APISlice.dll
[2006.08.29 16:59:12 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\SC_res.dll
[2006.08.29 16:59:12 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\EN_res.dll
[2006.08.29 16:59:12 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\TC_res.dll
[2006.08.29 16:59:12 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\MSNChatHook.dll
[2006.08.29 16:58:27 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\John\Local Settings\Application Data\fusioncache.dat
[2006.05.25 14:03:41 | 000,589,824 | ---- | C] () -- C:\WINDOWS\AntiV.EXE
[2006.05.25 14:03:41 | 000,002,772 | ---- | C] () -- C:\WINDOWS\AntiV.INI
[2006.05.23 09:09:05 | 000,020,480 | ---- | C] () -- C:\Program Files\Common Files\UninstallDrv.exe
[2005.12.02 14:14:56 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2005.11.30 20:45:10 | 002,400,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVMVdrv.sys
[2005.11.30 20:45:10 | 000,016,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPrcMon.sys
[2005.11.14 19:26:12 | 000,112,794 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005.10.31 03:17:38 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005.10.25 23:59:46 | 000,037,774 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.07.25 01:04:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005.07.25 01:01:34 | 000,442,800 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005.07.25 01:01:34 | 000,072,066 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005.07.25 00:48:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.07.25 00:10:32 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2005.07.25 00:05:28 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2005.07.24 23:40:22 | 000,202,528 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005.07.24 23:16:14 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2005.07.24 23:15:10 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005.07.24 23:15:10 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMP3.dll
[2005.07.24 23:15:10 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2005.07.24 23:15:10 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2005.07.24 22:42:22 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005.07.24 22:40:18 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005.07.15 01:48:46 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005.05.02 12:13:42 | 000,009,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\NETMNT.sys
[2005.03.28 00:45:26 | 000,000,091 | ---- | C] () -- C:\WINDOWS\ALaunch.ini
[2004.12.17 01:14:44 | 000,013,952 | ---- | C] () -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2004.10.03 18:50:54 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\ff_mpeg2enc.dll
[2004.08.22 17:04:56 | 000,069,120 | ---- | C] () -- C:\WINDOWS\daemon.dll
[2004.08.04 05:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.04 05:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.04 05:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.04 05:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.04 05:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.04 05:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.04 05:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2004.08.04 05:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004.01.13 03:46:34 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003.12.29 20:45:08 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ServiceControl.dll
[2002.05.24 01:34:46 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2002.03.21 15:39:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL
[2001.12.26 15:12:30 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001.11.14 12:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2001.09.03 22:46:38 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001.08.26 02:04:08 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.08.26 02:02:42 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.07.30 15:33:56 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001.07.23 21:04:36 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1999.01.27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997.06.13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll

========== LOP Check ==========

[2006.08.29 17:12:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acer
[2007.02.15 15:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2007.05.05 13:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems
[2008.02.24 00:37:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NtiDvdCopy
[2008.06.25 11:24:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\pdf995
[2008.08.08 19:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Maxtor
[2009.03.27 13:25:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpeedBit
[2009.03.27 13:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009.03.29 22:52:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2009.06.12 10:30:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010.03.22 23:56:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010.07.16 09:45:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011.08.04 08:54:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cisco
[2006.08.29 17:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Acer
[2006.09.03 13:07:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\RadLight Company
[2006.09.03 13:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ACD Systems
[2006.09.05 18:18:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\My Games
[2007.04.11 23:43:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ICQLite
[2007.10.13 04:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ACDInTouch
[2008.01.30 01:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Netscape
[2008.01.30 02:07:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Photodex
[2008.02.23 16:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Orbit
[2008.02.28 15:56:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Crystal Player
[2008.03.13 02:21:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\GetRightToGo
[2008.05.22 19:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Zoner
[2008.06.25 11:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\pdf995
[2008.07.10 20:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ICQ
[2008.08.28 00:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Canon
[2009.01.09 20:08:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\AutoTransfer
[2009.07.25 18:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Promethean
[2009.09.07 00:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\uTorrent
[2011.08.04 08:55:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Cisco
[2011.01.27 12:00:52 | 000,000,104 | ---- | M] () -- C:\WINDOWS\Tasks\Low Battery Alarm Program.job

a druhá část OTL:

Děkuji.
Ještě jsem si uvědomil, že mi nejde propojit iphone 4G s mým notebookem Acer Aspire 5672 WLMi
-to již tři roky od koupě. Pokud jsou v iphone nějaké fotky, tak se po připojení kabelem objví modrá smrt a restart. Prý by to měla být kolze s webcam - zkoušel jsem tehdy všechno - zakázání, odistalace, přeinstalace atd. a bez výsledku, tak jsem se s tím smířil. MOhla by to být taky softwarová záležitost?

Děkuji,děkuji

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >

< >

< MD5 for: AGP440.SYS >
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:AGP440.sys
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\agp440.sys
[2004.08.03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys
[2004.08.03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\drivers\AGP440.SYS

< MD5 for: ATAPI.SYS >
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:atapi.sys
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\atapi.sys
[2004.08.04 05:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.04 05:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.04 05:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 02:12:12 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\autochk.exe
[2004.08.04 05:00:00 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\i386\AUTOCHK.EXE
[2004.08.04 05:00:00 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\autochk.exe
[2004.08.04 05:00:00 | 000,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:cdrom.sys
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\cdrom.sys
[2009.12.22 19:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2009.12.22 19:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.04 05:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtUninstallKB952011$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.04 05:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=10654F9DDCEA9C46CFB77554231BE73B -- C:\WINDOWS\system32\cryptsvc.dll
[2004.08.03 22:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=10654F9DDCEA9C46CFB77554231BE73B -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
[2008.04.14 02:11:52 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=3D4E199942E29207970E04315D02AD3B -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2008.04.14 02:12:16 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=44F275C64738EA2056E3D9580C23B60F -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\csrss.exe
[2004.08.04 05:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=F12B178B1678D778CFD3FF1FC38C71FB -- C:\WINDOWS\system32\csrss.exe
[2004.08.03 22:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=F12B178B1678D778CFD3FF1FC38C71FB -- C:\WINDOWS\system32\dllcache\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 02:11:54 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\eventlog.dll
[2004.08.03 22:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.04 05:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 02:12:20 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\explorer.exe
[2007.06.13 13:26:04 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 12:23:08 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\explorer.exe
[2007.06.13 12:23:08 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\system32\dllcache\explorer.exe
[2004.08.04 05:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe

< MD5 for: FASTFAT.SYS >
[2004.08.04 05:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\system32\dllcache\fastfat.sys
[2004.08.04 05:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\system32\drivers\fastfat.sys
[2008.04.13 21:14:30 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\fastfat.sys

< MD5 for: HAL.DLL >
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:hal.dll
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\hal.dll
[2005.09.28 16:35:26 | 000,134,272 | ---- | M] (Microsoft Corporation) MD5=A3961B9456DE472D2F152C9DE950FFA5 -- C:\WINDOWS\system32\HAL.DLL
[2004.08.04 05:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtUninstallKB896256$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:Changer.sys
[2004.08.04 05:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.09.02 10:29:46 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\sp3.cab:isapnp.sys
[2008.04.13 20:36:42 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=05A299EC56E52649B1CF2FC52D20F2D7 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\isapnp.sys
[2004.08.04 05:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=E504F706CCB699C2596E9A3DA1596E87 -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2004.08.04 05:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=E504F706CCB699C2596E9A3DA1596E87 -- C:\WINDOWS\system32\drivers\isapnp.sys
[2004.08.04 05:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=E504F706CCB699C2596E9A3DA1596E87 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.03 22:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=84885F9B82F4D55C6146EBF6065D75D2 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.04 05:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=84885F9B82F4D55C6146EBF6065D75D2 -- C:\WINDOWS\system32\lsass.exe
[2008.04.14 02:12:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=BF2466B3E18E970D8A976FB95FC1CA85 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 21:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\ndis.sys
[2004.08.04 05:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.04 05:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2008.04.14 02:12:02 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\netlogon.dll
[2009.02.06 20:46:10 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$NtUninstallKB975467$\netlogon.dll
[2009.02.06 20:46:10 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2009.02.06 20:46:10 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\netlogon.dll
[2004.08.04 05:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll

< MD5 for: NTFS.SYS >
[2007.02.09 13:23:36 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=05AB81909514BFD69CBB1F2C147CF6B9 -- C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\ntfs.sys
[2007.02.09 13:10:36 | 000,574,464 | ---- | M] (Microsoft Corporation) MD5=19A811EF5F1ED5C926A028CE107FF1AF -- C:\WINDOWS\system32\dllcache\ntfs.sys
[2007.02.09 13:10:36 | 000,574,464 | ---- | M] (Microsoft Corporation) MD5=19A811EF5F1ED5C926A028CE107FF1AF -- C:\WINDOWS\system32\drivers\ntfs.sys
[2008.04.13 21:15:54 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\ntfs.sys
[2004.08.04 05:00:00 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\i386\NTFS.SYS
[2004.08.04 05:00:00 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtUninstallKB930916$\ntfs.sys

< MD5 for: SCECLI.DLL >
[2004.08.03 22:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.04 05:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll
[2008.04.14 02:12:06 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.06 13:06:24 | 000,110,592 | ---- | M] (Microsoft Corporation) MD5=020CEAAEDC8EB655B6506B8C70D53BB6 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2008.04.14 02:12:34 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=0E776ED5F7CC9F94299E70461B7B8185 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\services.exe
[2009.02.06 12:22:22 | 000,110,592 | ---- | M] (Microsoft Corporation) MD5=4712531AB7A01B7EE059853CA17D39BD -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.06 12:22:22 | 000,110,592 | ---- | M] (Microsoft Corporation) MD5=4712531AB7A01B7EE059853CA17D39BD -- C:\WINDOWS\system32\services.exe
[2009.02.06 13:11:06 | 000,110,592 | ---- | M] (Microsoft Corporation) MD5=65DF52F5B8B6E9BBD183505225C37315 -- C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\services.exe
[2004.08.04 05:00:00 | 000,108,032 | ---- | M] (Microsoft Corporation) MD5=C6CE6EEC82F187615D1002BB3BB50ED4 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe

< MD5 for: SMSS.EXE >
[2008.04.14 02:12:36 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=5F816C1F539266D2D4C78694239DA0B5 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\smss.exe
[2004.08.04 05:00:00 | 000,470,016 | ---- | M] (Microsoft Corporation) MD5=9A98937A980831729D21343754FF9D59 -- C:\i386\SYSTEM32\SMSS.EXE
[2004.08.03 22:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=BD7FB0957C716F1A60333AEE04DE2178 -- C:\WINDOWS\system32\dllcache\smss.exe
[2004.08.04 05:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=BD7FB0957C716F1A60333AEE04DE2178 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2004.08.04 05:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\$NtUninstallKB896423$\spoolsv.exe
[2005.06.10 20:17:14 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=AD3D9D191AEA7B5445FE1D82FFBB4788 -- C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[2008.04.14 02:12:36 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=D8E14A61ACC1D4A6CD0D38AEBAC7FA3B -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\spoolsv.exe
[2005.06.10 19:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2005.06.10 19:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\system32\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 02:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\svchost.exe
[2004.08.03 22:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.04 05:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 07:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 12:45:14 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:45:14 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\drivers\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 18:20:56 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2004.08.04 05:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 08:18:36 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2004.08.04 05:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.04 05:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\userinit.exe
[2008.04.14 02:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.03 22:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.04 05:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\winlogon.exe
[2008.04.14 02:12:40 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\winlogon.exe

< MD5 for: WS2_32.DLL >
[2008.04.14 02:12:10 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\ws2_32.dll
[2004.08.03 22:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.04 05:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2008.02.25 18:41:06 | 000,019,968 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\cx21spc.dll
[2008.07.06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2008.07.06 14:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /5 >

< %systemroot%\system32\drivers\*.sys /X >
[2004.08.04 05:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2004.08.04 05:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2005.11.07 16:24:42 | 000,141,392 | ---- | M] () -- C:\WINDOWS\system32\drivers\HSFProf.cty
[2005.12.01 06:46:32 | 000,040,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2erec.dll
[2005.12.01 11:35:00 | 000,025,472 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativvpxx.vp
[2005.06.08 00:45:54 | 000,058,560 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativckxx.vp
[2005.10.11 21:05:10 | 000,000,929 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativcaxx.vp
[2005.10.11 21:05:10 | 001,114,674 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativcaxx.cpa
[2001.08.17 12:10:28 | 000,035,913 | ---- | M] (SMC) -- C:\WINDOWS\system32\drivers\SMCIRDA.SY_
[2002.12.19 02:44:06 | 000,000,002 | ---- | M] () -- C:\WINDOWS\system32\drivers\ACER_T4000_XPP.MRK
[2005.11.30 20:45:10 | 000,114,272 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVFaL000.cfg
[2005.11.30 20:45:10 | 000,226,938 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVFeL000.cfg
[2005.11.30 20:45:10 | 000,146,494 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVFeL001.cfg
[2005.11.30 20:45:10 | 000,085,152 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVFeL002.cfg
[2004.03.11 22:28:02 | 000,118,784 | ---- | M] (Moore Computer Consultants, Inc.) -- C:\WINDOWS\system32\drivers\IpwUsb32.dll
[2009.06.22 10:11:32 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009.06.22 10:11:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\system32\drivers\Msft_Kernel_netaapl_01005.Wdf

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\system32\*.* /5 >
[2011.11.21 14:12:44 | 000,001,158 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2011.11.21 14:12:44 | 000,000,494 | ---- | M] () -- C:\WINDOWS\system32\eRLog.ini
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.dll /lockedfiles >
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\config\*.sav >
[2005.07.24 22:33:16 | 000,901,120 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2005.07.24 22:33:16 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2005.07.24 22:33:16 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*.* /U /s >
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[8 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1485 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2005.07.24 22:54:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Identities
[2005.07.24 23:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ATI
[2005.07.24 22:33:58 | 000,000,000 | --SD | M] -- C:\Documents and Settings\John\Application Data\Microsoft
[2006.08.29 16:58:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Macromedia
[2006.08.29 17:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Acer
[2006.08.29 17:50:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Symantec
[2006.08.29 19:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Intel
[2006.08.29 19:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\CyberLink
[2006.09.01 14:47:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Skype
[2006.09.03 00:35:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Adobe
[2006.09.03 13:07:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\RadLight Company
[2006.09.03 13:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ACD Systems
[2006.09.03 14:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Apple Computer
[2006.09.05 18:18:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\My Games
[2006.10.08 00:30:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\AdobeUM
[2007.01.14 04:47:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Real
[2007.01.16 16:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\DivX
[2007.02.03 22:30:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Google
[2007.04.11 23:43:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ICQLite
[2007.04.14 11:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Help
[2007.10.13 04:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ACDInTouch
[2008.01.30 01:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Mozilla
[2008.01.30 01:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Netscape
[2008.01.30 02:07:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Photodex
[2008.02.23 16:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Orbit
[2008.02.28 15:56:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Crystal Player
[2008.03.13 02:21:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\GetRightToGo
[2008.05.22 19:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Zoner
[2008.06.25 11:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\pdf995
[2008.07.10 20:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ICQ
[2008.08.28 00:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Canon
[2008.08.28 00:12:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\ArcSoft
[2009.01.09 20:08:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\AutoTransfer
[2009.03.28 14:13:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Sun
[2009.06.21 23:45:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\AVS4YOU
[2009.06.22 17:07:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Media Player Classic
[2009.07.25 18:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Promethean
[2009.09.07 00:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\uTorrent
[2010.09.20 15:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\skypePM
[2011.08.04 08:55:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Cisco
[2011.11.21 11:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\John\Application Data\Malwarebytes

< %APPDATA%\*.* >
[2005.07.24 22:34:14 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\John\Application Data\desktop.ini
[2011.09.22 09:13:36 | 000,044,504 | ---- | M] () -- C:\Documents and Settings\John\Application Data\GDIPFONTCACHEV1.DAT

< %APPDATA%\*.exe /s >
[2008.05.05 09:30:22 | 001,526,544 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\John\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
[2009.07.25 17:55:38 | 000,409,600 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\John\Application Data\Microsoft\Installer\{24BA79B5-53F9-475C-9D49-EC4BDE8B09CF}\ARPPRODUCTICON.exe
[2009.07.25 17:55:38 | 000,409,600 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\John\Application Data\Microsoft\Installer\{24BA79B5-53F9-475C-9D49-EC4BDE8B09CF}\NewShortcut2_6D20AC6FF7844F04BE4C6D94A1805157.exe
[2009.07.25 17:55:38 | 000,409,600 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\John\Application Data\Microsoft\Installer\{24BA79B5-53F9-475C-9D49-EC4BDE8B09CF}\NewShortcut3_6D20AC6FF7844F04BE4C6D94A1805157.exe

< %SYSTEMDRIVE%\*.exe >

< >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-11-16 15:58:37

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 1

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk /r \??\H:\0autocheck autochk *\0\0

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.11.21 16:44:52 | 000,000,512 | ---- | M] () MD5=400B70741B90FC2DA995E7BE0BBFBA11 -- C:\PhysicalMBR.bin

< End of report >

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s

:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde

Takze provedeno, posílám log

PS: chjo, youtube furt nejde .. ;(

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\system32\SET14C.tmp moved successfully.
C:\WINDOWS\system32\SET19E.tmp moved successfully.
C:\WINDOWS\system32\SET150.tmp moved successfully.
C:\WINDOWS\system32\SET158.tmp moved successfully.
C:\WINDOWS\system32\SET19F.tmp moved successfully.
C:\WINDOWS\system32\SET1A4.tmp moved successfully.
C:\WINDOWS\DUMPf289.tmp moved successfully.
C:\WINDOWS\DUMP2ddc.tmp moved successfully.
C:\WINDOWS\DUMP2fc0.tmp moved successfully.
C:\WINDOWS\DUMPba6c.tmp moved successfully.
C:\WINDOWS\DUMP2db7.tmp moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB5.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP17C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP230.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP30F.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP33A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPC8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP203.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E0.tmp folder moved successfully.
C:\WINDOWS\Installer\MSIB1.tmp moved successfully.
C:\WINDOWS\Installer\MSIB8.tmp moved successfully.
C:\WINDOWS\system32\CONFIG.TMP moved successfully.
C:\WINDOWS\Temp\SBC2E.tmp moved successfully.
C:\WINDOWS\Temp\SBC2F.tmp moved successfully.
C:\WINDOWS\Temp\SBC31.tmp moved successfully.
C:\WINDOWS\Temp\SBC3.tmp moved successfully.
C:\WINDOWS\Temp\sig11B.tmp moved successfully.
C:\WINDOWS\Temp\SBC114.tmp moved successfully.
C:\WINDOWS\Temp\SBC4.tmp moved successfully.
C:\WINDOWS\Temp\SBC6.tmp moved successfully.
C:\WINDOWS\Temp\SBC39.tmp moved successfully.
C:\WINDOWS\Temp\SBC82.tmp moved successfully.
C:\WINDOWS\Temp\SBC32.tmp moved successfully.
C:\WINDOWS\Temp\SBC33.tmp moved successfully.
C:\WINDOWS\Temp\SBC2D.tmp moved successfully.
C:\WINDOWS\Temp\SBC19.tmp moved successfully.
C:\WINDOWS\Temp\SBC28.tmp moved successfully.
C:\WINDOWS\Temp\SBC2C.tmp moved successfully.
C:\WINDOWS\Temp\SBC34.tmp moved successfully.
C:\WINDOWS\Temp\SBC35.tmp moved successfully.
C:\WINDOWS\Temp\is8.tmp moved successfully.
C:\WINDOWS\Temp\isA.tmp moved successfully.
C:\WINDOWS\Temp\SBCCF.tmp moved successfully.
C:\WINDOWS\Temp\SBC80.tmp moved successfully.
C:\WINDOWS\Temp\SBC81.tmp moved successfully.
C:\WINDOWS\Temp\SBC30.tmp moved successfully.
C:\WINDOWS\Temp\SBC5.tmp moved successfully.
C:\WINDOWS\Temp\SBC7.tmp moved successfully.
C:\WINDOWS\Temp\SBCC.tmp moved successfully.
C:\WINDOWS\Temp\SBCD.tmp moved successfully.
C:\WINDOWS\Temp\SBC2.tmp moved successfully.
C:\WINDOWS\Temp\SBCB.tmp moved successfully.
C:\WINDOWS\Temp\SBC10.tmp moved successfully.
C:\WINDOWS\Temp\SBC65.tmp moved successfully.
C:\WINDOWS\Temp\SBC83.tmp moved successfully.
C:\WINDOWS\Temp\SBCA7.tmp moved successfully.
C:\WINDOWS\Temp\SBCCE.tmp moved successfully.
C:\WINDOWS\Temp\SBC9.tmp moved successfully.
C:\WINDOWS\Temp\SBC13.tmp moved successfully.
C:\WINDOWS\Temp\SBC8.tmp moved successfully.
C:\WINDOWS\Temp\SBCA.tmp moved successfully.
C:\WINDOWS\Temp\SBCE.tmp moved successfully.
C:\WINDOWS\Temp\SBCF.tmp moved successfully.
C:\WINDOWS\Temp\SBC11.tmp moved successfully.
C:\WINDOWS\Temp\SBC12.tmp moved successfully.
C:\WINDOWS\Temp\SBC14.tmp moved successfully.
C:\WINDOWS\Temp\SBC15.tmp moved successfully.
C:\WINDOWS\Temp\SBC16.tmp moved successfully.
C:\WINDOWS\Temp\SBC17.tmp moved successfully.
C:\WINDOWS\Temp\SBC1C.tmp moved successfully.
C:\WINDOWS\Temp\SBC1D.tmp moved successfully.
C:\WINDOWS\Temp\SBC26.tmp moved successfully.
C:\WINDOWS\Temp\SBC18.tmp moved successfully.
C:\WINDOWS\Temp\SBC1A.tmp moved successfully.
C:\WINDOWS\Temp\SBC1B.tmp moved successfully.
C:\WINDOWS\Temp\SBC1E.tmp moved successfully.
C:\WINDOWS\Temp\SBC1F.tmp moved successfully.
C:\WINDOWS\Temp\SBC20.tmp moved successfully.
C:\WINDOWS\Temp\SBC21.tmp moved successfully.
C:\WINDOWS\Temp\SBC22.tmp moved successfully.
C:\WINDOWS\Temp\SBC27.tmp moved successfully.
C:\WINDOWS\Temp\SBC29.tmp moved successfully.
C:\WINDOWS\Temp\SBC2A.tmp moved successfully.
C:\WINDOWS\Temp\SBC23.tmp moved successfully.
C:\WINDOWS\Temp\SBC24.tmp moved successfully.
C:\WINDOWS\Temp\SBC25.tmp moved successfully.
C:\WINDOWS\Temp\SBC2B.tmp moved successfully.
C:\WINDOWS\Temp\SBC6C.tmp moved successfully.
C:\WINDOWS\Temp\SBC3B.tmp moved successfully.
C:\WINDOWS\Temp\SBC3C.tmp moved successfully.
C:\WINDOWS\Temp\SBC36.tmp moved successfully.
C:\WINDOWS\Temp\SBC37.tmp moved successfully.
C:\WINDOWS\Temp\SBC3A.tmp moved successfully.
C:\WINDOWS\Temp\SBC3D.tmp moved successfully.
C:\WINDOWS\Temp\SBC3E.tmp moved successfully.
C:\WINDOWS\Temp\SBC38.tmp moved successfully.
C:\WINDOWS\Temp\SBC44.tmp moved successfully.
C:\WINDOWS\Temp\SBC46.tmp moved successfully.
C:\WINDOWS\Temp\SBC47.tmp moved successfully.
C:\WINDOWS\Temp\SBC40.tmp moved successfully.
C:\WINDOWS\Temp\SBC41.tmp moved successfully.
C:\WINDOWS\Temp\SBC42.tmp moved successfully.
C:\WINDOWS\Temp\SBC43.tmp moved successfully.
C:\WINDOWS\Temp\SBC45.tmp moved successfully.
C:\WINDOWS\Temp\SBC3F.tmp moved successfully.
C:\WINDOWS\Temp\SBC48.tmp moved successfully.
C:\WINDOWS\Temp\SBC66.tmp moved successfully.
C:\WINDOWS\Temp\SBC49.tmp moved successfully.
C:\WINDOWS\Temp\SBC4A.tmp moved successfully.
C:\WINDOWS\Temp\SBC69.tmp moved successfully.
C:\WINDOWS\Temp\SBC4B.tmp moved successfully.
C:\WINDOWS\Temp\SBC4C.tmp moved successfully.
C:\WINDOWS\Temp\SBC4D.tmp moved successfully.
C:\WINDOWS\Temp\SBC4E.tmp moved successfully.
C:\WINDOWS\Temp\SBC4F.tmp moved successfully.
C:\WINDOWS\Temp\SBC50.tmp moved successfully.
C:\WINDOWS\Temp\SBC51.tmp moved successfully.
C:\WINDOWS\Temp\SBC52.tmp moved successfully.
C:\WINDOWS\Temp\SBC53.tmp moved successfully.
C:\WINDOWS\Temp\SBC54.tmp moved successfully.
C:\WINDOWS\Temp\SBC55.tmp moved successfully.
C:\WINDOWS\Temp\SBC56.tmp moved successfully.
C:\WINDOWS\Temp\is129.tmp moved successfully.
C:\WINDOWS\Temp\SBC115.tmp moved successfully.
C:\WINDOWS\Temp\SBC10F.tmp moved successfully.
C:\WINDOWS\Temp\SBCFE.tmp moved successfully.
C:\WINDOWS\Temp\SBC110.tmp moved successfully.
C:\WINDOWS\Temp\SBC103.tmp moved successfully.
C:\WINDOWS\Temp\SBC57.tmp moved successfully.
C:\WINDOWS\Temp\SBC58.tmp moved successfully.
C:\WINDOWS\Temp\SBC59.tmp moved successfully.
C:\WINDOWS\Temp\SBC63.tmp moved successfully.
C:\WINDOWS\Temp\SBC64.tmp moved successfully.
C:\WINDOWS\Temp\SBC67.tmp moved successfully.
C:\WINDOWS\Temp\SBC5A.tmp moved successfully.
C:\WINDOWS\Temp\SBC5C.tmp moved successfully.
C:\WINDOWS\Temp\SBC5B.tmp moved successfully.
C:\WINDOWS\Temp\SBC5D.tmp moved successfully.
C:\WINDOWS\Temp\SBC5E.tmp moved successfully.
C:\WINDOWS\Temp\SBC5F.tmp moved successfully.
C:\WINDOWS\Temp\SBC60.tmp moved successfully.
C:\WINDOWS\Temp\SBC61.tmp moved successfully.
C:\WINDOWS\Temp\SBC62.tmp moved successfully.
C:\WINDOWS\Temp\SBC68.tmp moved successfully.
C:\WINDOWS\Temp\SBC6A.tmp moved successfully.
C:\WINDOWS\Temp\SBC6B.tmp moved successfully.
C:\WINDOWS\Temp\SBC6D.tmp moved successfully.
C:\WINDOWS\Temp\SBC6E.tmp moved successfully.
C:\WINDOWS\Temp\SBC6F.tmp moved successfully.
C:\WINDOWS\Temp\SBC70.tmp moved successfully.
C:\WINDOWS\Temp\SBC71.tmp moved successfully.
C:\WINDOWS\Temp\SBC72.tmp moved successfully.
C:\WINDOWS\Temp\SBC74.tmp moved successfully.
C:\WINDOWS\Temp\SBC75.tmp moved successfully.
C:\WINDOWS\Temp\SBC76.tmp moved successfully.
C:\WINDOWS\Temp\SBC77.tmp moved successfully.
C:\WINDOWS\Temp\SBC73.tmp moved successfully.
C:\WINDOWS\Temp\SBCAB.tmp moved successfully.
C:\WINDOWS\Temp\SBCB2.tmp moved successfully.
C:\WINDOWS\Temp\SBC79.tmp moved successfully.
C:\WINDOWS\Temp\SBC7A.tmp moved successfully.
C:\WINDOWS\Temp\SBC7B.tmp moved successfully.
C:\WINDOWS\Temp\SBC78.tmp moved successfully.
C:\WINDOWS\Temp\SBC7F.tmp moved successfully.
C:\WINDOWS\Temp\SBCA0.tmp moved successfully.
C:\WINDOWS\Temp\SBCC6.tmp moved successfully.
C:\WINDOWS\Temp\SBC7C.tmp moved successfully.
C:\WINDOWS\Temp\SBC7D.tmp moved successfully.
C:\WINDOWS\Temp\SBC7E.tmp moved successfully.
C:\WINDOWS\Temp\SBC84.tmp moved successfully.
C:\WINDOWS\Temp\SBC11D.tmp moved successfully.
C:\WINDOWS\Temp\SBC86.tmp moved successfully.
C:\WINDOWS\Temp\SBC87.tmp moved successfully.
C:\WINDOWS\Temp\SBC8B.tmp moved successfully.
C:\WINDOWS\Temp\SBC85.tmp moved successfully.
C:\WINDOWS\Temp\SBC27F.tmp moved successfully.
C:\WINDOWS\Temp\SBC88.tmp moved successfully.
C:\WINDOWS\Temp\SBC89.tmp moved successfully.
C:\WINDOWS\Temp\SBCFC.tmp moved successfully.
C:\WINDOWS\Temp\SBCFD.tmp moved successfully.
C:\WINDOWS\Temp\SBCFA.tmp moved successfully.
C:\WINDOWS\Temp\SBC8A.tmp moved successfully.
C:\WINDOWS\Temp\SBC8C.tmp moved successfully.
C:\WINDOWS\Temp\SBC9E.tmp moved successfully.
C:\WINDOWS\Temp\SBCDE.tmp moved successfully.
C:\WINDOWS\Temp\SBC8F.tmp moved successfully.
C:\WINDOWS\Temp\SBC8D.tmp moved successfully.
C:\WINDOWS\Temp\SBC8E.tmp moved successfully.
C:\WINDOWS\Temp\SBCD0.tmp moved successfully.
C:\WINDOWS\Temp\SBC98.tmp moved successfully.
C:\WINDOWS\Temp\SBC99.tmp moved successfully.
C:\WINDOWS\Temp\SBC90.tmp moved successfully.
C:\WINDOWS\Temp\SBC91.tmp moved successfully.
C:\WINDOWS\Temp\isFC.tmp moved successfully.
C:\WINDOWS\Temp\SBCF1.tmp moved successfully.
C:\WINDOWS\Temp\SBC92.tmp moved successfully.
C:\WINDOWS\Temp\SBCCB.tmp moved successfully.
C:\WINDOWS\Temp\SBC93.tmp moved successfully.
C:\WINDOWS\Temp\SBC94.tmp moved successfully.
C:\WINDOWS\Temp\SBC95.tmp moved successfully.
C:\WINDOWS\Temp\SBCD9.tmp moved successfully.
C:\WINDOWS\Temp\SBCD6.tmp moved successfully.
C:\WINDOWS\Temp\SBCDA.tmp moved successfully.
C:\WINDOWS\Temp\SBCD7.tmp moved successfully.
C:\WINDOWS\Temp\SBCD1.tmp moved successfully.
C:\WINDOWS\Temp\is12B.tmp moved successfully.
C:\WINDOWS\Temp\sig120.tmp moved successfully.
C:\WINDOWS\Temp\SBC96.tmp moved successfully.
C:\WINDOWS\Temp\SBC97.tmp moved successfully.
C:\WINDOWS\Temp\SBC9B.tmp moved successfully.
C:\WINDOWS\Temp\SBC9C.tmp moved successfully.
C:\WINDOWS\Temp\SBC9D.tmp moved successfully.
C:\WINDOWS\Temp\SBC9A.tmp moved successfully.
C:\WINDOWS\Temp\SBC111.tmp moved successfully.
C:\WINDOWS\Temp\SBC10D.tmp moved successfully.
C:\WINDOWS\Temp\SBCCC.tmp moved successfully.
C:\WINDOWS\Temp\SBCD2.tmp moved successfully.
C:\WINDOWS\Temp\SBCCA.tmp moved successfully.
C:\WINDOWS\Temp\SBC9F.tmp moved successfully.
C:\WINDOWS\Temp\SBCBD.tmp moved successfully.
C:\WINDOWS\Temp\SBCBE.tmp moved successfully.
C:\WINDOWS\Temp\SBCBF.tmp moved successfully.
C:\WINDOWS\Temp\SBCA1.tmp moved successfully.
C:\WINDOWS\Temp\SBCC1.tmp moved successfully.
C:\WINDOWS\Temp\SBC101.tmp moved successfully.
C:\WINDOWS\Temp\SBCC3.tmp moved successfully.
C:\WINDOWS\Temp\SBCA2.tmp moved successfully.
C:\WINDOWS\Temp\SBCA3.tmp moved successfully.
C:\WINDOWS\Temp\SBCA4.tmp moved successfully.
C:\WINDOWS\Temp\SBCFB.tmp moved successfully.
C:\WINDOWS\Temp\SBCF9.tmp moved successfully.
C:\WINDOWS\Temp\SBC10E.tmp moved successfully.
C:\WINDOWS\Temp\SBCAD.tmp moved successfully.
C:\WINDOWS\Temp\SBCAE.tmp moved successfully.
C:\WINDOWS\Temp\SBCAF.tmp moved successfully.
C:\WINDOWS\Temp\SBCF6.tmp moved successfully.
C:\WINDOWS\Temp\SBC109.tmp moved successfully.
C:\WINDOWS\Temp\SBCF7.tmp moved successfully.
C:\WINDOWS\Temp\SBCA6.tmp moved successfully.
C:\WINDOWS\Temp\SBCA8.tmp moved successfully.
C:\WINDOWS\Temp\SBCA9.tmp moved successfully.
C:\WINDOWS\Temp\SBCA5.tmp moved successfully.
C:\WINDOWS\Temp\SBCAA.tmp moved successfully.
C:\WINDOWS\Temp\SBCAC.tmp moved successfully.
C:\WINDOWS\Temp\SBCB0.tmp moved successfully.
C:\WINDOWS\Temp\SBCB1.tmp moved successfully.
C:\WINDOWS\Temp\SBCB3.tmp moved successfully.
C:\WINDOWS\Temp\SBCB4.tmp moved successfully.
C:\WINDOWS\Temp\SBC112.tmp moved successfully.
C:\WINDOWS\Temp\SBCF8.tmp moved successfully.
C:\WINDOWS\Temp\SBCFF.tmp moved successfully.
C:\WINDOWS\Temp\SBCB5.tmp moved successfully.
C:\WINDOWS\Temp\SBCB6.tmp moved successfully.
C:\WINDOWS\Temp\SBCB7.tmp moved successfully.
C:\WINDOWS\Temp\SBCB8.tmp moved successfully.
C:\WINDOWS\Temp\SBCB9.tmp moved successfully.
C:\WINDOWS\Temp\SBCBA.tmp moved successfully.
C:\WINDOWS\Temp\SBCC4.tmp moved successfully.
C:\WINDOWS\Temp\SBCC5.tmp moved successfully.
C:\WINDOWS\Temp\SBCC2.tmp moved successfully.
C:\WINDOWS\Temp\SBCBB.tmp moved successfully.
C:\WINDOWS\Temp\SBCBC.tmp moved successfully.
C:\WINDOWS\Temp\SBCD3.tmp moved successfully.
C:\WINDOWS\Temp\SBCCD.tmp moved successfully.
C:\WINDOWS\Temp\SBCC9.tmp moved successfully.
C:\WINDOWS\Temp\SBCC0.tmp moved successfully.
C:\WINDOWS\Temp\isF0.tmp moved successfully.
C:\WINDOWS\Temp\SBCD4.tmp moved successfully.
C:\WINDOWS\Temp\SBCC7.tmp moved successfully.
C:\WINDOWS\Temp\SBCC8.tmp moved successfully.
C:\WINDOWS\Temp\SBCD5.tmp moved successfully.
C:\WINDOWS\Temp\sig11C.tmp moved successfully.
C:\WINDOWS\Temp\sig121.tmp moved successfully.
C:\WINDOWS\Temp\SBC100.tmp moved successfully.
C:\WINDOWS\Temp\SBC102.tmp moved successfully.
C:\WINDOWS\Temp\SBC113.tmp moved successfully.
C:\WINDOWS\Temp\SBCDD.tmp moved successfully.
C:\WINDOWS\Temp\SBCD8.tmp moved successfully.
C:\WINDOWS\Temp\SBCDB.tmp moved successfully.
C:\WINDOWS\Temp\SBCDC.tmp moved successfully.
C:\WINDOWS\Temp\isF2.tmp moved successfully.
C:\WINDOWS\Temp\SBC104.tmp moved successfully.
C:\WINDOWS\Temp\SBCDF.tmp moved successfully.
C:\WINDOWS\Temp\sig55B.tmp moved successfully.
C:\WINDOWS\Temp\sig560.tmp moved successfully.
C:\WINDOWS\Temp\SBCE1.tmp moved successfully.
C:\WINDOWS\Temp\SBCE6.tmp moved successfully.
C:\WINDOWS\Temp\SBCE0.tmp moved successfully.
C:\WINDOWS\Temp\SBCE8.tmp moved successfully.
C:\WINDOWS\Temp\SBCE2.tmp moved successfully.
C:\WINDOWS\Temp\SBCE3.tmp moved successfully.
C:\WINDOWS\Temp\SBCE4.tmp moved successfully.
C:\WINDOWS\Temp\SBCE5.tmp moved successfully.
C:\WINDOWS\Temp\SBCF3.tmp moved successfully.
C:\WINDOWS\Temp\SBCE7.tmp moved successfully.
C:\WINDOWS\Temp\SBCED.tmp moved successfully.
C:\WINDOWS\Temp\SBCEB.tmp moved successfully.
C:\WINDOWS\Temp\SBCEC.tmp moved successfully.
C:\WINDOWS\Temp\isEE.tmp moved successfully.
C:\WINDOWS\Temp\SBCEE.tmp moved successfully.
C:\WINDOWS\Temp\SBCE9.tmp moved successfully.
C:\WINDOWS\Temp\isFE.tmp moved successfully.
C:\WINDOWS\Temp\SBCEF.tmp moved successfully.
C:\WINDOWS\Temp\isF1.tmp moved successfully.
C:\WINDOWS\Temp\SBCEA.tmp moved successfully.
C:\WINDOWS\Temp\SBC105.tmp moved successfully.
C:\WINDOWS\Temp\SBC106.tmp moved successfully.
C:\WINDOWS\Temp\SBC107.tmp moved successfully.
C:\WINDOWS\Temp\SBCF0.tmp moved successfully.
C:\WINDOWS\Temp\SBCF5.tmp moved successfully.
C:\WINDOWS\Temp\SBC108.tmp moved successfully.
C:\WINDOWS\Temp\sig122.tmp moved successfully.
C:\WINDOWS\Temp\SBCF4.tmp moved successfully.
C:\WINDOWS\Temp\SBCF2.tmp moved successfully.
C:\WINDOWS\Temp\sig55C.tmp moved successfully.
C:\WINDOWS\Temp\sig561.tmp moved successfully.
C:\WINDOWS\Temp\SBC10A.tmp moved successfully.
C:\WINDOWS\Temp\SBC10B.tmp moved successfully.
C:\WINDOWS\Temp\SBC10C.tmp moved successfully.
C:\WINDOWS\Temp\sig123.tmp moved successfully.
C:\WINDOWS\Temp\sig316.tmp moved successfully.
C:\WINDOWS\Temp\sig318.tmp moved successfully.
C:\WINDOWS\Temp\sig324.tmp moved successfully.
C:\WINDOWS\Temp\sig11D.tmp moved successfully.
C:\WINDOWS\Temp\sig11E.tmp moved successfully.
C:\WINDOWS\Temp\sig11F.tmp moved successfully.
C:\WINDOWS\Temp\sig124.tmp moved successfully.
C:\WINDOWS\Temp\sig125.tmp moved successfully.
C:\WINDOWS\Temp\sig126.tmp moved successfully.
C:\WINDOWS\Temp\sig127.tmp moved successfully.
C:\WINDOWS\Temp\sig128.tmp moved successfully.
C:\WINDOWS\Temp\sig129.tmp moved successfully.
C:\WINDOWS\Temp\sig12A.tmp moved successfully.
C:\WINDOWS\Temp\sig12B.tmp moved successfully.
C:\WINDOWS\Temp\sig12C.tmp moved successfully.
C:\WINDOWS\Temp\sig12D.tmp moved successfully.
C:\WINDOWS\Temp\sig12E.tmp moved successfully.
C:\WINDOWS\Temp\sig12F.tmp moved successfully.
C:\WINDOWS\Temp\sig130.tmp moved successfully.
C:\WINDOWS\Temp\sig131.tmp moved successfully.
C:\WINDOWS\Temp\sig132.tmp moved successfully.
C:\WINDOWS\Temp\sig133.tmp moved successfully.
C:\WINDOWS\Temp\sig134.tmp moved successfully.
C:\WINDOWS\Temp\sig135.tmp moved successfully.
C:\WINDOWS\Temp\sig136.tmp moved successfully.
C:\WINDOWS\Temp\sig137.tmp moved successfully.
C:\WINDOWS\Temp\sig138.tmp moved successfully.
C:\WINDOWS\Temp\sig139.tmp moved successfully.
C:\WINDOWS\Temp\sig13A.tmp moved successfully.
C:\WINDOWS\Temp\sig13B.tmp moved successfully.
C:\WINDOWS\Temp\sig13C.tmp moved successfully.
C:\WINDOWS\Temp\sig13D.tmp moved successfully.
C:\WINDOWS\Temp\sig13E.tmp moved successfully.
C:\WINDOWS\Temp\sig13F.tmp moved successfully.
C:\WINDOWS\Temp\sig140.tmp moved successfully.
C:\WINDOWS\Temp\sig141.tmp moved successfully.
C:\WINDOWS\Temp\sig142.tmp moved successfully.
C:\WINDOWS\Temp\sig143.tmp moved successfully.
C:\WINDOWS\Temp\sig144.tmp moved successfully.
C:\WINDOWS\Temp\sig145.tmp moved successfully.
C:\WINDOWS\Temp\sig146.tmp moved successfully.
C:\WINDOWS\Temp\sig147.tmp moved successfully.
C:\WINDOWS\Temp\sig148.tmp moved successfully.
C:\WINDOWS\Temp\sig149.tmp moved successfully.
C:\WINDOWS\Temp\sig14A.tmp moved successfully.
C:\WINDOWS\Temp\sig14B.tmp moved successfully.
C:\WINDOWS\Temp\sig14C.tmp moved successfully.
C:\WINDOWS\Temp\sig14D.tmp moved successfully.
C:\WINDOWS\Temp\sig14E.tmp moved successfully.
C:\WINDOWS\Temp\sig14F.tmp moved successfully.
C:\WINDOWS\Temp\sig150.tmp moved successfully.
C:\WINDOWS\Temp\sig151.tmp moved successfully.
C:\WINDOWS\Temp\sig152.tmp moved successfully.
C:\WINDOWS\Temp\sig153.tmp moved successfully.
C:\WINDOWS\Temp\sig154.tmp moved successfully.
C:\WINDOWS\Temp\sig155.tmp moved successfully.
C:\WINDOWS\Temp\sig156.tmp moved successfully.
C:\WINDOWS\Temp\sig157.tmp moved successfully.
C:\WINDOWS\Temp\sig158.tmp moved successfully.
C:\WINDOWS\Temp\sig159.tmp moved successfully.
C:\WINDOWS\Temp\sig15A.tmp moved successfully.
C:\WINDOWS\Temp\sig15B.tmp moved successfully.
C:\WINDOWS\Temp\sig15C.tmp moved successfully.
C:\WINDOWS\Temp\sig15D.tmp moved successfully.
C:\WINDOWS\Temp\sig15E.tmp moved successfully.
C:\WINDOWS\Temp\sig15F.tmp moved successfully.
C:\WINDOWS\Temp\sig160.tmp moved successfully.
C:\WINDOWS\Temp\sig161.tmp moved successfully.
C:\WINDOWS\Temp\sig162.tmp moved successfully.
C:\WINDOWS\Temp\sig163.tmp moved successfully.
C:\WINDOWS\Temp\sig300.tmp moved successfully.
C:\WINDOWS\Temp\sig165.tmp moved successfully.
C:\WINDOWS\Temp\sig301.tmp moved successfully.
C:\WINDOWS\Temp\sig167.tmp moved successfully.
C:\WINDOWS\Temp\sig168.tmp moved successfully.
C:\WINDOWS\Temp\sig169.tmp moved successfully.
C:\WINDOWS\Temp\sig16A.tmp moved successfully.
C:\WINDOWS\Temp\sig16B.tmp moved successfully.
C:\WINDOWS\Temp\sig16C.tmp moved successfully.
C:\WINDOWS\Temp\sig16D.tmp moved successfully.
C:\WINDOWS\Temp\sig16E.tmp moved successfully.
C:\WINDOWS\Temp\sig16F.tmp moved successfully.
C:\WINDOWS\Temp\sig170.tmp moved successfully.
C:\WINDOWS\Temp\sig171.tmp moved successfully.
C:\WINDOWS\Temp\sig2A8.tmp moved successfully.
C:\WINDOWS\Temp\sig174.tmp moved successfully.
C:\WINDOWS\Temp\sig175.tmp moved successfully.
C:\WINDOWS\Temp\sig176.tmp moved successfully.
C:\WINDOWS\Temp\sig177.tmp moved successfully.
C:\WINDOWS\Temp\sig302.tmp moved successfully.
C:\WINDOWS\Temp\sig179.tmp moved successfully.
C:\WINDOWS\Temp\sig2AA.tmp moved successfully.
C:\WINDOWS\Temp\sig2B6.tmp moved successfully.
C:\WINDOWS\Temp\sig2B7.tmp moved successfully.
C:\WINDOWS\Temp\sig2BC.tmp moved successfully.
C:\WINDOWS\Temp\sig2BE.tmp moved successfully.
C:\WINDOWS\Temp\sig2BF.tmp moved successfully.
C:\WINDOWS\Temp\sig303.tmp moved successfully.
C:\WINDOWS\Temp\sig181.tmp moved successfully.
C:\WINDOWS\Temp\sig182.tmp moved successfully.
C:\WINDOWS\Temp\sig183.tmp moved successfully.
C:\WINDOWS\Temp\sig184.tmp moved successfully.
C:\WINDOWS\Temp\sig185.tmp moved successfully.
C:\WINDOWS\Temp\sig186.tmp moved successfully.
C:\WINDOWS\Temp\sig187.tmp moved successfully.
C:\WINDOWS\Temp\sig188.tmp moved successfully.
C:\WINDOWS\Temp\sig189.tmp moved successfully.
C:\WINDOWS\Temp\sig2C0.tmp moved successfully.
C:\WINDOWS\Temp\sig2C1.tmp moved successfully.
C:\WINDOWS\Temp\sig2C2.tmp moved successfully.
C:\WINDOWS\Temp\sig2C3.tmp moved successfully.
C:\WINDOWS\Temp\sig2C4.tmp moved successfully.
C:\WINDOWS\Temp\sig2CE.tmp moved successfully.
C:\WINDOWS\Temp\sig2CF.tmp moved successfully.
C:\WINDOWS\Temp\sig304.tmp moved successfully.
C:\WINDOWS\Temp\sig193.tmp moved successfully.
C:\WINDOWS\Temp\sig194.tmp moved successfully.
C:\WINDOWS\Temp\sig305.tmp moved successfully.
C:\WINDOWS\Temp\sig196.tmp moved successfully.
C:\WINDOWS\Temp\sig2D0.tmp moved successfully.
C:\WINDOWS\Temp\sig199.tmp moved successfully.
C:\WINDOWS\Temp\sig2D1.tmp moved successfully.
C:\WINDOWS\Temp\sig19B.tmp moved successfully.
C:\WINDOWS\Temp\sig2D2.tmp moved successfully.
C:\WINDOWS\Temp\sig19D.tmp moved successfully.
C:\WINDOWS\Temp\sig19E.tmp moved successfully.
C:\WINDOWS\Temp\sig19F.tmp moved successfully.
C:\WINDOWS\Temp\sig1A0.tmp moved successfully.
C:\WINDOWS\Temp\sig1A1.tmp moved successfully.
C:\WINDOWS\Temp\sig1A2.tmp moved successfully.
C:\WINDOWS\Temp\sig2D3.tmp moved successfully.
C:\WINDOWS\Temp\sig2D4.tmp moved successfully.
C:\WINDOWS\Temp\sig2D5.tmp moved successfully.
C:\WINDOWS\Temp\sig2D6.tmp moved successfully.
C:\WINDOWS\Temp\sig2D9.tmp moved successfully.
C:\WINDOWS\Temp\sig2DB.tmp moved successfully.
C:\WINDOWS\Temp\sig2DC.tmp moved successfully.
C:\WINDOWS\Temp\sig2DE.tmp moved successfully.
C:\WINDOWS\Temp\sig2E0.tmp moved successfully.
C:\WINDOWS\Temp\sig2E7.tmp moved successfully.
C:\WINDOWS\Temp\sig2E8.tmp moved successfully.
C:\WINDOWS\Temp\sig2E9.tmp moved successfully.
C:\WINDOWS\Temp\sig2EA.tmp moved successfully.
C:\WINDOWS\Temp\sig2EB.tmp moved successfully.
C:\WINDOWS\Temp\sig2EC.tmp moved successfully.
C:\WINDOWS\Temp\sig2ED.tmp moved successfully.
C:\WINDOWS\Temp\sig2EE.tmp moved successfully.
C:\WINDOWS\Temp\sig2EF.tmp moved successfully.
C:\WINDOWS\Temp\sig2F0.tmp moved successfully.
C:\WINDOWS\Temp\sig2F1.tmp moved successfully.
C:\WINDOWS\Temp\sig2F2.tmp moved successfully.
C:\WINDOWS\Temp\sig2F3.tmp moved successfully.
C:\WINDOWS\Temp\sig2F4.tmp moved successfully.
C:\WINDOWS\Temp\sig2F5.tmp moved successfully.
C:\WINDOWS\Temp\sig306.tmp moved successfully.
C:\WINDOWS\Temp\sig117.tmp moved successfully.
C:\WINDOWS\Temp\sig118.tmp moved successfully.
C:\WINDOWS\Temp\sig119.tmp moved successfully.
C:\WINDOWS\Temp\sig11A.tmp moved successfully.
C:\WINDOWS\Temp\sig164.tmp moved successfully.
C:\WINDOWS\Temp\sig166.tmp moved successfully.
C:\WINDOWS\Temp\sig172.tmp moved successfully.
C:\WINDOWS\Temp\sig173.tmp moved successfully.
C:\WINDOWS\Temp\sig178.tmp moved successfully.
C:\WINDOWS\Temp\sig17A.tmp moved successfully.
C:\WINDOWS\Temp\sig17B.tmp moved successfully.
C:\WINDOWS\Temp\sig17C.tmp moved successfully.
C:\WINDOWS\Temp\sig17D.tmp moved successfully.
C:\WINDOWS\Temp\sig17E.tmp moved successfully.
C:\WINDOWS\Temp\sig17F.tmp moved successfully.
C:\WINDOWS\Temp\sig180.tmp moved successfully.
C:\WINDOWS\Temp\sig18A.tmp moved successfully.
C:\WINDOWS\Temp\sig18B.tmp moved successfully.
C:\WINDOWS\Temp\sig18C.tmp moved successfully.
C:\WINDOWS\Temp\sig18D.tmp moved successfully.
C:\WINDOWS\Temp\sig18E.tmp moved successfully.
C:\WINDOWS\Temp\sig18F.tmp moved successfully.
C:\WINDOWS\Temp\sig190.tmp moved successfully.
C:\WINDOWS\Temp\sig191.tmp moved successfully.
C:\WINDOWS\Temp\sig192.tmp moved successfully.
C:\WINDOWS\Temp\sig195.tmp moved successfully.
C:\WINDOWS\Temp\sig197.tmp moved successfully.
C:\WINDOWS\Temp\sig198.tmp moved successfully.
C:\WINDOWS\Temp\sig19A.tmp moved successfully.
C:\WINDOWS\Temp\sig19C.tmp moved successfully.
C:\WINDOWS\Temp\sig1A3.tmp moved successfully.
C:\WINDOWS\Temp\sig1A4.tmp moved successfully.
C:\WINDOWS\Temp\sig1A5.tmp moved successfully.
C:\WINDOWS\Temp\sig1A6.tmp moved successfully.
C:\WINDOWS\Temp\sig1A7.tmp moved successfully.
C:\WINDOWS\Temp\sig1A8.tmp moved successfully.
C:\WINDOWS\Temp\sig1A9.tmp moved successfully.
C:\WINDOWS\Temp\sig1AA.tmp moved successfully.
C:\WINDOWS\Temp\sig1AB.tmp moved successfully.
C:\WINDOWS\Temp\sig1AC.tmp moved successfully.
C:\WINDOWS\Temp\sig1AD.tmp moved successfully.
C:\WINDOWS\Temp\sig1AE.tmp moved successfully.
C:\WINDOWS\Temp\sig1AF.tmp moved successfully.
C:\WINDOWS\Temp\sig1B0.tmp moved successfully.
C:\WINDOWS\Temp\sig1B1.tmp moved successfully.
C:\WINDOWS\Temp\sig1B2.tmp moved successfully.
C:\WINDOWS\Temp\sig1B3.tmp moved successfully.
C:\WINDOWS\Temp\sig1B4.tmp moved successfully.
C:\WINDOWS\Temp\sig1B5.tmp moved successfully.
C:\WINDOWS\Temp\sig1B6.tmp moved successfully.
C:\WINDOWS\Temp\sig1B7.tmp moved successfully.
C:\WINDOWS\Temp\sig1B8.tmp moved successfully.
C:\WINDOWS\Temp\sig1B9.tmp moved successfully.
C:\WINDOWS\Temp\sig1BA.tmp moved successfully.
C:\WINDOWS\Temp\sig1BB.tmp moved successfully.
C:\WINDOWS\Temp\sig1BC.tmp moved successfully.
C:\WINDOWS\Temp\sig1BD.tmp moved successfully.
C:\WINDOWS\Temp\sig1BE.tmp moved successfully.
C:\WINDOWS\Temp\sig1BF.tmp moved successfully.
C:\WINDOWS\Temp\sig1C0.tmp moved successfully.
C:\WINDOWS\Temp\sig1C1.tmp moved successfully.
C:\WINDOWS\Temp\sig1C2.tmp moved successfully.
C:\WINDOWS\Temp\sig1C3.tmp moved successfully.
C:\WINDOWS\Temp\sig1C4.tmp moved successfully.
C:\WINDOWS\Temp\sig1C5.tmp moved successfully.
C:\WINDOWS\Temp\sig1C6.tmp moved successfully.
C:\WINDOWS\Temp\sig1C7.tmp moved successfully.
C:\WINDOWS\Temp\sig1C8.tmp moved successfully.
C:\WINDOWS\Temp\sig1C9.tmp moved successfully.
C:\WINDOWS\Temp\sig1CA.tmp moved successfully.
C:\WINDOWS\Temp\sig1CB.tmp moved successfully.
C:\WINDOWS\Temp\sig1CC.tmp moved successfully.
C:\WINDOWS\Temp\sig1CD.tmp moved successfully.
C:\WINDOWS\Temp\sig2F6.tmp moved successfully.
C:\WINDOWS\Temp\sig1CF.tmp moved successfully.
C:\WINDOWS\Temp\sig2F7.tmp moved successfully.
C:\WINDOWS\Temp\sig1D1.tmp moved successfully.
C:\WINDOWS\Temp\sig1D2.tmp moved successfully.
C:\WINDOWS\Temp\sig1D3.tmp moved successfully.
C:\WINDOWS\Temp\sig1D4.tmp moved successfully.
C:\WINDOWS\Temp\sig1D5.tmp moved successfully.
C:\WINDOWS\Temp\sig1D6.tmp moved successfully.
C:\WINDOWS\Temp\sig1D7.tmp moved successfully.
C:\WINDOWS\Temp\sig1D8.tmp moved successfully.
C:\WINDOWS\Temp\sig1D9.tmp moved successfully.
C:\WINDOWS\Temp\sig1DA.tmp moved successfully.
C:\WINDOWS\Temp\sig1DB.tmp moved successfully.
C:\WINDOWS\Temp\sig2F8.tmp moved successfully.
C:\WINDOWS\Temp\sig2F9.tmp moved successfully.
C:\WINDOWS\Temp\sig1DE.tmp moved successfully.
C:\WINDOWS\Temp\sig1DF.tmp moved successfully.
C:\WINDOWS\Temp\sig1E0.tmp moved successfully.
C:\WINDOWS\Temp\sig1E1.tmp moved successfully.
C:\WINDOWS\Temp\sig2FA.tmp moved successfully.
C:\WINDOWS\Temp\sig1E3.tmp moved successfully.
C:\WINDOWS\Temp\sig2FB.tmp moved successfully.
C:\WINDOWS\Temp\sig2FC.tmp moved successfully.
C:\WINDOWS\Temp\sig2FD.tmp moved successfully.
C:\WINDOWS\Temp\sig2FE.tmp moved successfully.
C:\WINDOWS\Temp\sig2FF.tmp moved successfully.
C:\WINDOWS\Temp\sig307.tmp moved successfully.
C:\WINDOWS\Temp\sig308.tmp moved successfully.
C:\WINDOWS\Temp\sig309.tmp moved successfully.
C:\WINDOWS\Temp\sig310.tmp moved successfully.
C:\WINDOWS\Temp\sig1EB.tmp moved successfully.
C:\WINDOWS\Temp\sig1EC.tmp moved successfully.
C:\WINDOWS\Temp\sig1ED.tmp moved successfully.
C:\WINDOWS\Temp\sig1EE.tmp moved successfully.
C:\WINDOWS\Temp\sig1EF.tmp moved successfully.
C:\WINDOWS\Temp\sig1F0.tmp moved successfully.
C:\WINDOWS\Temp\sig1F1.tmp moved successfully.
C:\WINDOWS\Temp\sig1F2.tmp moved successfully.
C:\WINDOWS\Temp\sig30A.tmp moved successfully.
C:\WINDOWS\Temp\sig30B.tmp moved successfully.
C:\WINDOWS\Temp\sig30C.tmp moved successfully.
C:\WINDOWS\Temp\sig30D.tmp moved successfully.
C:\WINDOWS\Temp\sig30E.tmp moved successfully.
C:\WINDOWS\Temp\sig30F.tmp moved successfully.
C:\WINDOWS\Temp\sig311.tmp moved successfully.
C:\WINDOWS\Temp\sig312.tmp moved successfully.
C:\WINDOWS\Temp\sig313.tmp moved successfully.
C:\WINDOWS\Temp\sig314.tmp moved successfully.
C:\WINDOWS\Temp\sig315.tmp moved successfully.
C:\WINDOWS\Temp\sig317.tmp moved successfully.
C:\WINDOWS\Temp\sig1FC.tmp moved successfully.
C:\WINDOWS\Temp\sig1FD.tmp moved successfully.
C:\WINDOWS\Temp\sig319.tmp moved successfully.
C:\WINDOWS\Temp\sig320.tmp moved successfully.
C:\WINDOWS\Temp\sig1FF.tmp moved successfully.
C:\WINDOWS\Temp\sig31A.tmp moved successfully.
C:\WINDOWS\Temp\sig202.tmp moved successfully.
C:\WINDOWS\Temp\sig321.tmp moved successfully.
C:\WINDOWS\Temp\sig204.tmp moved successfully.
C:\WINDOWS\Temp\sig322.tmp moved successfully.
C:\WINDOWS\Temp\sig206.tmp moved successfully.
C:\WINDOWS\Temp\sig207.tmp moved successfully.
C:\WINDOWS\Temp\sig208.tmp moved successfully.
C:\WINDOWS\Temp\sig209.tmp moved successfully.
C:\WINDOWS\Temp\sig20A.tmp moved successfully.
C:\WINDOWS\Temp\sig20B.tmp moved successfully.
C:\WINDOWS\Temp\sig31B.tmp moved successfully.
C:\WINDOWS\Temp\sig31C.tmp moved successfully.
C:\WINDOWS\Temp\sig31D.tmp moved successfully.
C:\WINDOWS\Temp\sig31E.tmp moved successfully.
C:\WINDOWS\Temp\sig31F.tmp moved successfully.
C:\WINDOWS\Temp\sig323.tmp moved successfully.
C:\WINDOWS\Temp\sig326.tmp moved successfully.
C:\WINDOWS\Temp\sig327.tmp moved successfully.
C:\WINDOWS\Temp\sig328.tmp moved successfully.
C:\WINDOWS\Temp\sig329.tmp moved successfully.
C:\WINDOWS\Temp\sig32B.tmp moved successfully.
C:\WINDOWS\Temp\sig333.tmp moved successfully.
C:\WINDOWS\Temp\sig334.tmp moved successfully.
C:\WINDOWS\Temp\sig335.tmp moved successfully.
C:\WINDOWS\Temp\sig336.tmp moved successfully.
C:\WINDOWS\Temp\sig337.tmp moved successfully.
C:\WINDOWS\Temp\sig338.tmp moved successfully.
C:\WINDOWS\Temp\sig339.tmp moved successfully.
C:\WINDOWS\Temp\sig33A.tmp moved successfully.
C:\WINDOWS\Temp\sig33B.tmp moved successfully.
C:\WINDOWS\Temp\sig345.tmp moved successfully.
C:\WINDOWS\Temp\sig346.tmp moved successfully.
C:\WINDOWS\Temp\sig348.tmp moved successfully.
C:\WINDOWS\Temp\sig34B.tmp moved successfully.
C:\WINDOWS\Temp\sig34D.tmp moved successfully.
C:\WINDOWS\Temp\sig34F.tmp moved successfully.
C:\WINDOWS\Temp\sig350.tmp moved successfully.
C:\WINDOWS\Temp\sig351.tmp moved successfully.
C:\WINDOWS\Temp\sig352.tmp moved successfully.
C:\WINDOWS\Temp\sig353.tmp moved successfully.
C:\WINDOWS\Temp\sig354.tmp moved successfully.
C:\WINDOWS\Temp\sig325.tmp moved successfully.
C:\WINDOWS\Temp\sig32A.tmp moved successfully.
C:\WINDOWS\Temp\sig330.tmp moved successfully.
C:\WINDOWS\Temp\sig1CE.tmp moved successfully.
C:\WINDOWS\Temp\sig1D0.tmp moved successfully.
C:\WINDOWS\Temp\sig1DC.tmp moved successfully.
C:\WINDOWS\Temp\sig1DD.tmp moved successfully.
C:\WINDOWS\Temp\sig1E2.tmp moved successfully.
C:\WINDOWS\Temp\sig1E4.tmp moved successfully.
C:\WINDOWS\Temp\sig1E5.tmp moved successfully.
C:\WINDOWS\Temp\sig1E6.tmp moved successfully.
C:\WINDOWS\Temp\sig1E7.tmp moved successfully.
C:\WINDOWS\Temp\sig1E8.tmp moved successfully.
C:\WINDOWS\Temp\sig1E9.tmp moved successfully.
C:\WINDOWS\Temp\sig1EA.tmp moved successfully.
C:\WINDOWS\Temp\sig1F3.tmp moved successfully.
C:\WINDOWS\Temp\sig1F4.tmp moved successfully.
C:\WINDOWS\Temp\sig1F5.tmp moved successfully.
C:\WINDOWS\Temp\sig1F6.tmp moved successfully.
C:\WINDOWS\Temp\sig1F7.tmp moved successfully.
C:\WINDOWS\Temp\sig1F8.tmp moved successfully.
C:\WINDOWS\Temp\sig1F9.tmp moved successfully.
C:\WINDOWS\Temp\sig1FA.tmp moved successfully.
C:\WINDOWS\Temp\sig1FB.tmp moved successfully.
C:\WINDOWS\Temp\sig1FE.tmp moved successfully.
C:\WINDOWS\Temp\sig200.tmp moved successfully.
C:\WINDOWS\Temp\sig201.tmp moved successfully.
C:\WINDOWS\Temp\sig203.tmp moved successfully.
C:\WINDOWS\Temp\sig205.tmp moved successfully.
C:\WINDOWS\Temp\sig20C.tmp moved successfully.
C:\WINDOWS\Temp\sig20D.tmp moved successfully.
C:\WINDOWS\Temp\sig20E.tmp moved successfully.
C:\WINDOWS\Temp\sig20F.tmp moved successfully.
C:\WINDOWS\Temp\sig210.tmp moved successfully.
C:\WINDOWS\Temp\sig211.tmp moved successfully.
C:\WINDOWS\Temp\sig212.tmp moved successfully.
C:\WINDOWS\Temp\sig213.tmp moved successfully.
C:\WINDOWS\Temp\sig214.tmp moved successfully.
C:\WINDOWS\Temp\sig215.tmp moved successfully.
C:\WINDOWS\Temp\sig216.tmp moved successfully.
C:\WINDOWS\Temp\sig217.tmp moved successfully.
C:\WINDOWS\Temp\sig218.tmp moved successfully.
C:\WINDOWS\Temp\sig219.tmp moved successfully.
C:\WINDOWS\Temp\sig21A.tmp moved successfully.
C:\WINDOWS\Temp\sig21B.tmp moved successfully.
C:\WINDOWS\Temp\sig21C.tmp moved successfully.
C:\WINDOWS\Temp\sig21D.tmp moved successfully.
C:\WINDOWS\Temp\sig21E.tmp moved successfully.
C:\WINDOWS\Temp\sig21F.tmp moved successfully.
C:\WINDOWS\Temp\sig220.tmp moved successfully.
C:\WINDOWS\Temp\sig221.tmp moved successfully.
C:\WINDOWS\Temp\sig222.tmp moved successfully.
C:\WINDOWS\Temp\sig223.tmp moved successfully.
C:\WINDOWS\Temp\sig224.tmp moved successfully.
C:\WINDOWS\Temp\sig225.tmp moved successfully.
C:\WINDOWS\Temp\sig226.tmp moved successfully.
C:\WINDOWS\Temp\sig227.tmp moved successfully.
C:\WINDOWS\Temp\sig228.tmp moved successfully.
C:\WINDOWS\Temp\sig229.tmp moved successfully.
C:\WINDOWS\Temp\sig22A.tmp moved successfully.
C:\WINDOWS\Temp\sig22B.tmp moved successfully.
C:\WINDOWS\Temp\sig22C.tmp moved successfully.
C:\WINDOWS\Temp\sig22D.tmp moved successfully.
C:\WINDOWS\Temp\sig22E.tmp moved successfully.
C:\WINDOWS\Temp\sig22F.tmp moved successfully.
C:\WINDOWS\Temp\sig230.tmp moved successfully.
C:\WINDOWS\Temp\sig231.tmp moved successfully.
C:\WINDOWS\Temp\sig232.tmp moved successfully.
C:\WINDOWS\Temp\sig233.tmp moved successfully.
C:\WINDOWS\Temp\sig234.tmp moved successfully.
C:\WINDOWS\Temp\sig235.tmp moved successfully.
C:\WINDOWS\Temp\sig236.tmp moved successfully.
C:\WINDOWS\Temp\sig237.tmp moved successfully.
C:\WINDOWS\Temp\sig238.tmp moved successfully.
C:\WINDOWS\Temp\sig239.tmp moved successfully.
C:\WINDOWS\Temp\sig23A.tmp moved successfully.
C:\WINDOWS\Temp\sig32C.tmp moved successfully.
C:\WINDOWS\Temp\sig23C.tmp moved successfully.
C:\WINDOWS\Temp\sig32D.tmp moved successfully.
C:\WINDOWS\Temp\sig23E.tmp moved successfully.
C:\WINDOWS\Temp\sig23F.tmp moved successfully.
C:\WINDOWS\Temp\sig240.tmp moved successfully.
C:\WINDOWS\Temp\sig241.tmp moved successfully.
C:\WINDOWS\Temp\sig242.tmp moved successfully.
C:\WINDOWS\Temp\sig243.tmp moved successfully.
C:\WINDOWS\Temp\sig244.tmp moved successfully.
C:\WINDOWS\Temp\sig245.tmp moved successfully.
C:\WINDOWS\Temp\sig246.tmp moved successfully.
C:\WINDOWS\Temp\sig247.tmp moved successfully.
C:\WINDOWS\Temp\sig248.tmp moved successfully.
C:\WINDOWS\Temp\sig384.tmp moved successfully.
C:\WINDOWS\Temp\sig386.tmp moved successfully.
C:\WINDOWS\Temp\sig392.tmp moved successfully.
C:\WINDOWS\Temp\sig24B.tmp moved successfully.
C:\WINDOWS\Temp\sig24C.tmp moved successfully.
C:\WINDOWS\Temp\sig24D.tmp moved successfully.
C:\WINDOWS\Temp\sig24E.tmp moved successfully.
C:\WINDOWS\Temp\sig32E.tmp moved successfully.
C:\WINDOWS\Temp\sig250.tmp moved successfully.
C:\WINDOWS\Temp\sig32F.tmp moved successfully.
C:\WINDOWS\Temp\sig331.tmp moved successfully.
C:\WINDOWS\Temp\sig332.tmp moved successfully.
C:\WINDOWS\Temp\sig33C.tmp moved successfully.
C:\WINDOWS\Temp\sig340.tmp moved successfully.
C:\WINDOWS\Temp\sig258.tmp moved successfully.
C:\WINDOWS\Temp\sig259.tmp moved successfully.
C:\WINDOWS\Temp\sig25A.tmp moved successfully.
C:\WINDOWS\Temp\sig25B.tmp moved successfully.
C:\WINDOWS\Temp\sig25C.tmp moved successfully.
C:\WINDOWS\Temp\sig25D.tmp moved successfully.
C:\WINDOWS\Temp\sig25E.tmp moved successfully.
C:\WINDOWS\Temp\sig25F.tmp moved successfully.
C:\WINDOWS\Temp\sig33D.tmp moved successfully.
C:\WINDOWS\Temp\sig33E.tmp moved successfully.
C:\WINDOWS\Temp\sig33F.tmp moved successfully.
C:\WINDOWS\Temp\sig341.tmp moved successfully.
C:\WINDOWS\Temp\sig342.tmp moved successfully.
C:\WINDOWS\Temp\sig343.tmp moved successfully.
C:\WINDOWS\Temp\sig269.tmp moved successfully.
C:\WINDOWS\Temp\sig26A.tmp moved successfully.
C:\WINDOWS\Temp\sig344.tmp moved successfully.
C:\WINDOWS\Temp\sig347.tmp moved successfully.
C:\WINDOWS\Temp\sig26C.tmp moved successfully.
C:\WINDOWS\Temp\sig349.tmp moved successfully.
C:\WINDOWS\Temp\sig34A.tmp moved successfully.
C:\WINDOWS\Temp\sig355.tmp moved successfully.
C:\WINDOWS\Temp\sig26F.tmp moved successfully.
C:\WINDOWS\Temp\sig356.tmp moved successfully.
C:\WINDOWS\Temp\sig271.tmp moved successfully.
C:\WINDOWS\Temp\sig357.tmp moved successfully.
C:\WINDOWS\Temp\sig273.tmp moved successfully.
C:\WINDOWS\Temp\sig274.tmp moved successfully.
C:\WINDOWS\Temp\sig275.tmp moved successfully.
C:\WINDOWS\Temp\sig276.tmp moved successfully.
C:\WINDOWS\Temp\sig277.tmp moved successfully.
C:\WINDOWS\Temp\sig278.tmp moved successfully.
C:\WINDOWS\Temp\sig34C.tmp moved successfully.
C:\WINDOWS\Temp\sig34E.tmp moved successfully.
C:\WINDOWS\Temp\sig358.tmp moved successfully.
C:\WINDOWS\Temp\sig359.tmp moved successfully.
C:\WINDOWS\Temp\sig35A.tmp moved successfully.
C:\WINDOWS\Temp\sig35B.tmp moved successfully.
C:\WINDOWS\Temp\sig35C.tmp moved successfully.
C:\WINDOWS\Temp\sig35D.tmp moved successfully.
C:\WINDOWS\Temp\sig35E.tmp moved successfully.
C:\WINDOWS\Temp\sig35F.tmp moved successfully.
C:\WINDOWS\Temp\sig360.tmp moved successfully.
C:\WINDOWS\Temp\sig361.tmp moved successfully.
C:\WINDOWS\Temp\sig362.tmp moved successfully.
C:\WINDOWS\Temp\sig363.tmp moved successfully.
C:\WINDOWS\Temp\sig364.tmp moved successfully.
C:\WINDOWS\Temp\sig365.tmp moved successfully.
C:\WINDOWS\Temp\sig366.tmp moved successfully.
C:\WINDOWS\Temp\sig367.tmp moved successfully.
C:\WINDOWS\Temp\sig368.tmp moved successfully.
C:\WINDOWS\Temp\sig369.tmp moved successfully.
C:\WINDOWS\Temp\sig36A.tmp moved successfully.
C:\WINDOWS\Temp\sig36B.tmp moved successfully.
C:\WINDOWS\Temp\sig36C.tmp moved successfully.
C:\WINDOWS\Temp\sig36D.tmp moved successfully.
C:\WINDOWS\Temp\sig36E.tmp moved successfully.
C:\WINDOWS\Temp\sig36F.tmp moved successfully.
C:\WINDOWS\Temp\sig370.tmp moved successfully.
C:\WINDOWS\Temp\sig371.tmp moved successfully.
C:\WINDOWS\Temp\sig372.tmp moved successfully.
C:\WINDOWS\Temp\sig373.tmp moved successfully.
C:\WINDOWS\Temp\sig374.tmp moved successfully.
C:\WINDOWS\Temp\sig375.tmp moved successfully.
C:\WINDOWS\Temp\sig376.tmp moved successfully.
C:\WINDOWS\Temp\sig377.tmp moved successfully.
C:\WINDOWS\Temp\sig378.tmp moved successfully.
C:\WINDOWS\Temp\sig379.tmp moved successfully.
C:\WINDOWS\Temp\sig37A.tmp moved successfully.
C:\WINDOWS\Temp\sig37B.tmp moved successfully.
C:\WINDOWS\Temp\sig37C.tmp moved successfully.
C:\WINDOWS\Temp\sig37D.tmp moved successfully.
C:\WINDOWS\Temp\sig37E.tmp moved successfully.
C:\WINDOWS\Temp\sig37F.tmp moved successfully.
C:\WINDOWS\Temp\sig380.tmp moved successfully.
C:\WINDOWS\Temp\sig381.tmp moved successfully.
C:\WINDOWS\Temp\sig382.tmp moved successfully.
C:\WINDOWS\Temp\sig383.tmp moved successfully.
C:\WINDOWS\Temp\sig385.tmp moved successfully.
C:\WINDOWS\Temp\sig387.tmp moved successfully.
C:\WINDOWS\Temp\sig388.tmp moved successfully.
C:\WINDOWS\Temp\sig389.tmp moved successfully.
C:\WINDOWS\Temp\sig38A.tmp moved successfully.
C:\WINDOWS\Temp\sig38B.tmp moved successfully.
C:\WINDOWS\Temp\sig38C.tmp moved successfully.
C:\WINDOWS\Temp\sig390.tmp moved successfully.
C:\WINDOWS\Temp\sig23B.tmp moved successfully.
C:\WINDOWS\Temp\sig23D.tmp moved successfully.
C:\WINDOWS\Temp\sig249.tmp moved successfully.
C:\WINDOWS\Temp\sig24A.tmp moved successfully.
C:\WINDOWS\Temp\sig24F.tmp moved successfully.
C:\WINDOWS\Temp\sig251.tmp moved successfully.
C:\WINDOWS\Temp\sig252.tmp moved successfully.
C:\WINDOWS\Temp\sig253.tmp moved successfully.
C:\WINDOWS\Temp\sig254.tmp moved successfully.
C:\WINDOWS\Temp\sig255.tmp moved successfully.
C:\WINDOWS\Temp\sig256.tmp moved successfully.
C:\WINDOWS\Temp\sig257.tmp moved successfully.
C:\WINDOWS\Temp\sig260.tmp moved successfully.
C:\WINDOWS\Temp\sig261.tmp moved successfully.
C:\WINDOWS\Temp\sig262.tmp moved successfully.
C:\WINDOWS\Temp\sig263.tmp moved successfully.
C:\WINDOWS\Temp\sig264.tmp moved successfully.
C:\WINDOWS\Temp\sig265.tmp moved successfully.
C:\WINDOWS\Temp\sig266.tmp moved successfully.
C:\WINDOWS\Temp\sig267.tmp moved successfully.
C:\WINDOWS\Temp\sig268.tmp moved successfully.
C:\WINDOWS\Temp\sig26B.tmp moved successfully.
C:\WINDOWS\Temp\sig26D.tmp moved successfully.
C:\WINDOWS\Temp\sig26E.tmp moved successfully.
C:\WINDOWS\Temp\sig270.tmp moved successfully.
C:\WINDOWS\Temp\sig272.tmp moved successfully.
C:\WINDOWS\Temp\sig279.tmp moved successfully.
C:\WINDOWS\Temp\sig27A.tmp moved successfully.
C:\WINDOWS\Temp\sig27B.tmp moved successfully.
C:\WINDOWS\Temp\sig27C.tmp moved successfully.
C:\WINDOWS\Temp\sig27D.tmp moved successfully.
C:\WINDOWS\Temp\sig27E.tmp moved successfully.
C:\WINDOWS\Temp\sig27F.tmp moved successfully.
C:\WINDOWS\Temp\sig280.tmp moved successfully.
C:\WINDOWS\Temp\sig281.tmp moved successfully.
C:\WINDOWS\Temp\sig282.tmp moved successfully.
C:\WINDOWS\Temp\sig283.tmp moved successfully.
C:\WINDOWS\Temp\sig284.tmp moved successfully.
C:\WINDOWS\Temp\sig285.tmp moved successfully.
C:\WINDOWS\Temp\sig286.tmp moved successfully.
C:\WINDOWS\Temp\sig287.tmp moved successfully.
C:\WINDOWS\Temp\sig288.tmp moved successfully.
C:\WINDOWS\Temp\sig289.tmp moved successfully.
C:\WINDOWS\Temp\sig28A.tmp moved successfully.
C:\WINDOWS\Temp\sig28B.tmp moved successfully.
C:\WINDOWS\Temp\sig28C.tmp moved successfully.
C:\WINDOWS\Temp\sig28D.tmp moved successfully.
C:\WINDOWS\Temp\sig28E.tmp moved successfully.
C:\WINDOWS\Temp\sig28F.tmp moved successfully.
C:\WINDOWS\Temp\sig290.tmp moved successfully.
C:\WINDOWS\Temp\sig291.tmp moved successfully.
C:\WINDOWS\Temp\sig292.tmp moved successfully.
C:\WINDOWS\Temp\sig293.tmp moved successfully.
C:\WINDOWS\Temp\sig294.tmp moved successfully.
C:\WINDOWS\Temp\sig295.tmp moved successfully.
C:\WINDOWS\Temp\sig296.tmp moved successfully.
C:\WINDOWS\Temp\sig297.tmp moved successfully.
C:\WINDOWS\Temp\sig298.tmp moved successfully.
C:\WINDOWS\Temp\sig299.tmp moved successfully.
C:\WINDOWS\Temp\sig29A.tmp moved successfully.
C:\WINDOWS\Temp\sig29B.tmp moved successfully.
C:\WINDOWS\Temp\sig29C.tmp moved successfully.
C:\WINDOWS\Temp\sig29D.tmp moved successfully.
C:\WINDOWS\Temp\sig29E.tmp moved successfully.
C:\WINDOWS\Temp\sig29F.tmp moved successfully.
C:\WINDOWS\Temp\sig2A0.tmp moved successfully.
C:\WINDOWS\Temp\sig2A1.tmp moved successfully.
C:\WINDOWS\Temp\sig2A2.tmp moved successfully.
C:\WINDOWS\Temp\sig2A3.tmp moved successfully.
C:\WINDOWS\Temp\sig2A4.tmp moved successfully.
C:\WINDOWS\Temp\sig2A5.tmp moved successfully.
C:\WINDOWS\Temp\sig2A6.tmp moved successfully.
C:\WINDOWS\Temp\sig2A7.tmp moved successfully.
C:\WINDOWS\Temp\sig38D.tmp moved successfully.
C:\WINDOWS\Temp\sig2A9.tmp moved successfully.
C:\WINDOWS\Temp\sig38E.tmp moved successfully.
C:\WINDOWS\Temp\sig2AB.tmp moved successfully.
C:\WINDOWS\Temp\sig2AC.tmp moved successfully.
C:\WINDOWS\Temp\sig2AD.tmp moved successfully.
C:\WINDOWS\Temp\sig2AE.tmp moved successfully.
C:\WINDOWS\Temp\sig2AF.tmp moved successfully.
C:\WINDOWS\Temp\sig2B0.tmp moved successfully.
C:\WINDOWS\Temp\sig2B1.tmp moved successfully.
C:\WINDOWS\Temp\sig2B2.tmp moved successfully.
C:\WINDOWS\Temp\sig2B3.tmp moved successfully.
C:\WINDOWS\Temp\sig2B4.tmp moved successfully.
C:\WINDOWS\Temp\sig2B5.tmp moved successfully.
C:\WINDOWS\Temp\sig38F.tmp moved successfully.
C:\WINDOWS\Temp\sig391.tmp moved successfully.
C:\WINDOWS\Temp\sig394.tmp moved successfully.
C:\WINDOWS\Temp\sig2B8.tmp moved successfully.
C:\WINDOWS\Temp\sig2B9.tmp moved successfully.
C:\WINDOWS\Temp\sig2BA.tmp moved successfully.
C:\WINDOWS\Temp\sig2BB.tmp moved successfully.
C:\WINDOWS\Temp\sig395.tmp moved successfully.
C:\WINDOWS\Temp\sig396.tmp moved successfully.
C:\WINDOWS\Temp\sig2BD.tmp moved successfully.
C:\WINDOWS\Temp\sig397.tmp moved successfully.
C:\WINDOWS\Temp\sig399.tmp moved successfully.
C:\WINDOWS\Temp\sig3A1.tmp moved successfully.
C:\WINDOWS\Temp\sig3A2.tmp moved successfully.
C:\WINDOWS\Temp\sig3A3.tmp moved successfully.
C:\WINDOWS\Temp\sig3A4.tmp moved successfully.
C:\WINDOWS\Temp\sig3A5.tmp moved successfully.
C:\WINDOWS\Temp\sig3A6.tmp moved successfully.
C:\WINDOWS\Temp\sig2C5.tmp moved successfully.
C:\WINDOWS\Temp\sig2C6.tmp moved successfully.
C:\WINDOWS\Temp\sig2C7.tmp moved successfully.
C:\WINDOWS\Temp\sig2C8.tmp moved successfully.
C:\WINDOWS\Temp\sig2C9.tmp moved successfully.
C:\WINDOWS\Temp\sig2CA.tmp moved successfully.
C:\WINDOWS\Temp\sig2CB.tmp moved successfully.
C:\WINDOWS\Temp\sig2CC.tmp moved successfully.
C:\WINDOWS\Temp\sig2CD.tmp moved successfully.
C:\WINDOWS\Temp\sig3A7.tmp moved successfully.
C:\WINDOWS\Temp\sig3A8.tmp moved successfully.
C:\WINDOWS\Temp\sig3A9.tmp moved successfully.
C:\WINDOWS\Temp\sig3B3.tmp moved successfully.
C:\WINDOWS\Temp\sig3B4.tmp moved successfully.
C:\WINDOWS\Temp\sig3B6.tmp moved successfully.
C:\WINDOWS\Temp\sig3B9.tmp moved successfully.
C:\WINDOWS\Temp\sig3BB.tmp moved successfully.
C:\WINDOWS\Temp\sig3BD.tmp moved successfully.
C:\WINDOWS\Temp\sig2D7.tmp moved successfully.
C:\WINDOWS\Temp\sig2D8.tmp moved successfully.
C:\WINDOWS\Temp\sig3BE.tmp moved successfully.
C:\WINDOWS\Temp\sig2DA.tmp moved successfully.
C:\WINDOWS\Temp\sig3BF.tmp moved successfully.
C:\WINDOWS\Temp\sig3C0.tmp moved successfully.
C:\WINDOWS\Temp\sig2DD.tmp moved successfully.
C:\WINDOWS\Temp\sig3C1.tmp moved successfully.
C:\WINDOWS\Temp\sig2DF.tmp moved successfully.
C:\WINDOWS\Temp\sig3C2.tmp moved successfully.
C:\WINDOWS\Temp\sig2E1.tmp moved successfully.
C:\WINDOWS\Temp\sig2E2.tmp moved successfully.
C:\WINDOWS\Temp\sig2E3.tmp moved successfully.
C:\WINDOWS\Temp\sig2E4.tmp moved successfully.
C:\WINDOWS\Temp\sig2E5.tmp moved successfully.
C:\WINDOWS\Temp\sig2E6.tmp moved successfully.
C:\WINDOWS\Temp\sig393.tmp moved successfully.
C:\WINDOWS\Temp\sig398.tmp moved successfully.
C:\WINDOWS\Temp\sig55D.tmp moved successfully.
C:\WINDOWS\Temp\sig564.tmp moved successfully.
C:\WINDOWS\Temp\sig39A.tmp moved successfully.
C:\WINDOWS\Temp\sig39B.tmp moved successfully.
C:\WINDOWS\Temp\sig39C.tmp moved successfully.
C:\WINDOWS\Temp\sig39D.tmp moved successfully.
C:\WINDOWS\Temp\sig39E.tmp moved successfully.
C:\WINDOWS\Temp\sig39F.tmp moved successfully.
C:\WINDOWS\Temp\sig3A0.tmp moved successfully.
C:\WINDOWS\Temp\sig3AA.tmp moved successfully.
C:\WINDOWS\Temp\sig3AB.tmp moved successfully.
C:\WINDOWS\Temp\sig3AC.tmp moved successfully.
C:\WINDOWS\Temp\sig3AD.tmp moved successfully.
C:\WINDOWS\Temp\sig3AE.tmp moved successfully.
C:\WINDOWS\Temp\sig3AF.tmp moved successfully.
C:\WINDOWS\Temp\sig3B0.tmp moved successfully.
C:\WINDOWS\Temp\sig3B1.tmp moved successfully.
C:\WINDOWS\Temp\sig3B2.tmp moved successfully.
C:\WINDOWS\Temp\sig3B5.tmp moved successfully.
C:\WINDOWS\Temp\sig3B7.tmp moved successfully.
C:\WINDOWS\Temp\sig3B8.tmp moved successfully.
C:\WINDOWS\Temp\sig3BA.tmp moved successfully.
C:\WINDOWS\Temp\sig3BC.tmp moved successfully.
C:\WINDOWS\Temp\sig3C3.tmp moved successfully.
C:\WINDOWS\Temp\sig3C4.tmp moved successfully.
C:\WINDOWS\Temp\sig3C5.tmp moved successfully.
C:\WINDOWS\Temp\sig3C6.tmp moved successfully.
C:\WINDOWS\Temp\sig3C7.tmp moved successfully.
C:\WINDOWS\Temp\sig3C8.tmp moved successfully.
C:\WINDOWS\Temp\sig566.tmp moved successfully.
C:\WINDOWS\Temp\sig3C9.tmp moved successfully.
C:\WINDOWS\Temp\sig3CA.tmp moved successfully.
C:\WINDOWS\Temp\sig3CB.tmp moved successfully.
C:\WINDOWS\Temp\sig3CC.tmp moved successfully.
C:\WINDOWS\Temp\sig3CD.tmp moved successfully.
C:\WINDOWS\Temp\sig3CE.tmp moved successfully.
C:\WINDOWS\Temp\sig3CF.tmp moved successfully.
C:\WINDOWS\Temp\sig3D0.tmp moved successfully.
C:\WINDOWS\Temp\sig3D1.tmp moved successfully.
C:\WINDOWS\Temp\sig3D2.tmp moved successfully.
C:\WINDOWS\Temp\sig3D3.tmp moved successfully.
C:\WINDOWS\Temp\sig3D4.tmp moved successfully.
C:\WINDOWS\Temp\sig3D5.tmp moved successfully.
C:\WINDOWS\Temp\sig3D6.tmp moved successfully.
C:\WINDOWS\Temp\sig3D7.tmp moved successfully.
C:\WINDOWS\Temp\sig3D8.tmp moved successfully.
C:\WINDOWS\Temp\sig3D9.tmp moved successfully.
C:\WINDOWS\Temp\sig3DA.tmp moved successfully.
C:\WINDOWS\Temp\sig3DB.tmp moved successfully.
C:\WINDOWS\Temp\sig3DC.tmp moved successfully.
C:\WINDOWS\Temp\sig3DD.tmp moved successfully.
C:\WINDOWS\Temp\sig3DE.tmp moved successfully.
C:\WINDOWS\Temp\sig3DF.tmp moved successfully.
C:\WINDOWS\Temp\sig3E0.tmp moved successfully.
C:\WINDOWS\Temp\sig3E1.tmp moved successfully.
C:\WINDOWS\Temp\sig3E2.tmp moved successfully.
C:\WINDOWS\Temp\sig3E3.tmp moved successfully.
C:\WINDOWS\Temp\sig3E4.tmp moved successfully.
C:\WINDOWS\Temp\sig3E5.tmp moved successfully.
C:\WINDOWS\Temp\sig3E6.tmp moved successfully.
C:\WINDOWS\Temp\sig3E7.tmp moved successfully.
C:\WINDOWS\Temp\sig3E8.tmp moved successfully.
C:\WINDOWS\Temp\sig3E9.tmp moved successfully.
C:\WINDOWS\Temp\sig3EA.tmp moved successfully.
C:\WINDOWS\Temp\sig3EB.tmp moved successfully.
C:\WINDOWS\Temp\sig3EC.tmp moved successfully.
C:\WINDOWS\Temp\sig3ED.tmp moved successfully.
C:\WINDOWS\Temp\sig3EE.tmp moved successfully.
C:\WINDOWS\Temp\sig3EF.tmp moved successfully.
C:\WINDOWS\Temp\sig3F0.tmp moved successfully.
C:\WINDOWS\Temp\sig3F1.tmp moved successfully.
C:\WINDOWS\Temp\sig55E.tmp moved successfully.
C:\WINDOWS\Temp\sig3F3.tmp moved successfully.
C:\WINDOWS\Temp\sig55F.tmp moved successfully.
C:\WINDOWS\Temp\sig3F5.tmp moved successfully.
C:\WINDOWS\Temp\sig3F6.tmp moved successfully.
C:\WINDOWS\Temp\sig3F7.tmp moved successfully.
C:\WINDOWS\Temp\sig3F8.tmp moved successfully.
C:\WINDOWS\Temp\sig3F9.tmp moved successfully.
C:\WINDOWS\Temp\sig3FA.tmp moved successfully.
C:\WINDOWS\Temp\sig3FB.tmp moved successfully.
C:\WINDOWS\Temp\sig3FC.tmp moved successfully.
C:\WINDOWS\Temp\sig3FD.tmp moved successfully.
C:\WINDOWS\Temp\sig3FE.tmp moved successfully.
C:\WINDOWS\Temp\sig3FF.tmp moved successfully.
C:\WINDOWS\Temp\sig567.tmp moved successfully.
C:\WINDOWS\Temp\sig569.tmp moved successfully.
C:\WINDOWS\Temp\sig402.tmp moved successfully.
C:\WINDOWS\Temp\sig403.tmp moved successfully.
C:\WINDOWS\Temp\sig404.tmp moved successfully.
C:\WINDOWS\Temp\sig405.tmp moved successfully.
C:\WINDOWS\Temp\sig572.tmp moved successfully.
C:\WINDOWS\Temp\sig407.tmp moved successfully.
C:\WINDOWS\Temp\sig56B.tmp moved successfully.
C:\WINDOWS\Temp\sig573.tmp moved successfully.
C:\WINDOWS\Temp\sig57B.tmp moved successfully.
C:\WINDOWS\Temp\sig580.tmp moved successfully.
C:\WINDOWS\Temp\sig574.tmp moved successfully.
C:\WINDOWS\Temp\sig575.tmp moved successfully.
C:\WINDOWS\Temp\sig576.tmp moved successfully.
C:\WINDOWS\Temp\sig577.tmp moved successfully.
C:\WINDOWS\Temp\sig578.tmp moved successfully.
C:\WINDOWS\Temp\sig579.tmp moved successfully.
C:\WINDOWS\Temp\sig40F.tmp moved successfully.
C:\WINDOWS\Temp\sig410.tmp moved successfully.
C:\WINDOWS\Temp\sig411.tmp moved successfully.
C:\WINDOWS\Temp\sig412.tmp moved successfully.
C:\WINDOWS\Temp\sig413.tmp moved successfully.
C:\WINDOWS\Temp\sig414.tmp moved successfully.
C:\WINDOWS\Temp\sig415.tmp moved successfully.
C:\WINDOWS\Temp\sig416.tmp moved successfully.
C:\WINDOWS\Temp\sig417.tmp moved successfully.
C:\WINDOWS\Temp\sig57A.tmp moved successfully.
C:\WINDOWS\Temp\sig57C.tmp moved successfully.
C:\WINDOWS\Temp\sig587.tmp moved successfully.
C:\WINDOWS\Temp\sig588.tmp moved successfully.
C:\WINDOWS\Temp\sig589.tmp moved successfully.
C:\WINDOWS\Temp\sig57D.tmp moved successfully.
C:\WINDOWS\Temp\sig57E.tmp moved successfully.
C:\WINDOWS\Temp\sig57F.tmp moved successfully.
C:\WINDOWS\Temp\sig581.tmp moved successfully.
C:\WINDOWS\Temp\sig582.tmp moved successfully.
C:\WINDOWS\Temp\sig421.tmp moved successfully.
C:\WINDOWS\Temp\sig422.tmp moved successfully.
C:\WINDOWS\Temp\sig583.tmp moved successfully.
C:\WINDOWS\Temp\sig424.tmp moved successfully.
C:\WINDOWS\Temp\sig584.tmp moved successfully.
C:\WINDOWS\Temp\sig585.tmp moved successfully.
C:\WINDOWS\Temp\sig427.tmp moved successfully.
C:\WINDOWS\Temp\sig586.tmp moved successfully.
C:\WINDOWS\Temp\sig429.tmp moved successfully.
C:\WINDOWS\Temp\sig58A.tmp moved successfully.
C:\WINDOWS\Temp\sig42B.tmp moved successfully.
C:\WINDOWS\Temp\sig42C.tmp moved successfully.
C:\WINDOWS\Temp\sig42D.tmp moved successfully.
C:\WINDOWS\Temp\sig42E.tmp moved successfully.
C:\WINDOWS\Temp\sig42F.tmp moved successfully.
C:\WINDOWS\Temp\sig430.tmp moved successfully.
C:\WINDOWS\Temp\sig593.tmp moved successfully.
C:\WINDOWS\Temp\sig594.tmp moved successfully.
C:\WINDOWS\Temp\sig595.tmp moved successfully.
C:\WINDOWS\Temp\sig58B.tmp moved successfully.
C:\WINDOWS\Temp\sig58C.tmp moved successfully.
C:\WINDOWS\Temp\sig58D.tmp moved successfully.
C:\WINDOWS\Temp\sig58E.tmp moved successfully.
C:\WINDOWS\Temp\sig58F.tmp moved successfully.
C:\WINDOWS\Temp\sig590.tmp moved successfully.
C:\WINDOWS\Temp\sig591.tmp moved successfully.
C:\WINDOWS\Temp\sig592.tmp moved successfully.
C:\WINDOWS\Temp\sig596.tmp moved successfully.
C:\WINDOWS\Temp\sig597.tmp moved successfully.
C:\WINDOWS\Temp\sig59B.tmp moved successfully.
C:\WINDOWS\Temp\GUR5C0.tmp moved successfully.
C:\WINDOWS\Temp\sig598.tmp moved successfully.
C:\WINDOWS\Temp\sig599.tmp moved successfully.
C:\WINDOWS\Temp\sig59A.tmp moved successfully.
C:\WINDOWS\Temp\sig59C.tmp moved successfully.
C:\WINDOWS\Temp\sig59D.tmp moved successfully.
C:\WINDOWS\Temp\sig59E.tmp moved successfully.
C:\WINDOWS\Temp\sig59F.tmp moved successfully.
C:\WINDOWS\Temp\sig5A0.tmp moved successfully.
C:\WINDOWS\Temp\sig5A7.tmp moved successfully.
C:\WINDOWS\Temp\sig5A1.tmp moved successfully.
C:\WINDOWS\Temp\sig5A2.tmp moved successfully.
C:\WINDOWS\Temp\sig5A3.tmp moved successfully.
C:\WINDOWS\Temp\sig3F2.tmp moved successfully.
C:\WINDOWS\Temp\sig3F4.tmp moved successfully.
C:\WINDOWS\Temp\sig400.tmp moved successfully.
C:\WINDOWS\Temp\sig401.tmp moved successfully.
C:\WINDOWS\Temp\sig406.tmp moved successfully.
C:\WINDOWS\Temp\sig408.tmp moved successfully.
C:\WINDOWS\Temp\sig409.tmp moved successfully.
C:\WINDOWS\Temp\sig40A.tmp moved successfully.
C:\WINDOWS\Temp\sig40B.tmp moved successfully.
C:\WINDOWS\Temp\sig40C.tmp moved successfully.
C:\WINDOWS\Temp\sig40D.tmp moved successfully.
C:\WINDOWS\Temp\sig40E.tmp moved successfully.
C:\WINDOWS\Temp\sig418.tmp moved successfully.
C:\WINDOWS\Temp\sig419.tmp moved successfully.
C:\WINDOWS\Temp\sig41A.tmp moved successfully.
C:\WINDOWS\Temp\sig41B.tmp moved successfully.
C:\WINDOWS\Temp\sig41C.tmp moved successfully.
C:\WINDOWS\Temp\sig41D.tmp moved successfully.
C:\WINDOWS\Temp\sig41E.tmp moved successfully.
C:\WINDOWS\Temp\sig41F.tmp moved successfully.
C:\WINDOWS\Temp\sig420.tmp moved successfully.
C:\WINDOWS\Temp\sig423.tmp moved successfully.
C:\WINDOWS\Temp\sig425.tmp moved successfully.
C:\WINDOWS\Temp\sig426.tmp moved successfully.
C:\WINDOWS\Temp\sig428.tmp moved successfully.
C:\WINDOWS\Temp\sig42A.tmp moved successfully.
C:\WINDOWS\Temp\sig431.tmp moved successfully.
C:\WINDOWS\Temp\sig432.tmp moved successfully.
C:\WINDOWS\Temp\sig433.tmp moved successfully.
C:\WINDOWS\Temp\sig434.tmp moved successfully.
C:\WINDOWS\Temp\sig435.tmp moved successfully.
C:\WINDOWS\Temp\sig436.tmp moved successfully.
C:\WINDOWS\Temp\sig437.tmp moved successfully.
C:\WINDOWS\Temp\sig438.tmp moved successfully.
C:\WINDOWS\Temp\sig439.tmp moved successfully.
C:\WINDOWS\Temp\sig43A.tmp moved successfully.
C:\WINDOWS\Temp\sig43B.tmp moved successfully.
C:\WINDOWS\Temp\sig43C.tmp moved successfully.
C:\WINDOWS\Temp\sig43D.tmp moved successfully.
C:\WINDOWS\Temp\sig43E.tmp moved successfully.
C:\WINDOWS\Temp\sig43F.tmp moved successfully.
C:\WINDOWS\Temp\sig440.tmp moved successfully.
C:\WINDOWS\Temp\sig441.tmp moved successfully.
C:\WINDOWS\Temp\sig442.tmp moved successfully.
C:\WINDOWS\Temp\sig443.tmp moved successfully.
C:\WINDOWS\Temp\sig444.tmp moved successfully.
C:\WINDOWS\Temp\sig445.tmp moved successfully.
C:\WINDOWS\Temp\sig446.tmp moved successfully.
C:\WINDOWS\Temp\sig447.tmp moved successfully.
C:\WINDOWS\Temp\sig448.tmp moved successfully.
C:\WINDOWS\Temp\sig449.tmp moved successfully.
C:\WINDOWS\Temp\sig44A.tmp moved successfully.
C:\WINDOWS\Temp\sig44B.tmp moved successfully.
C:\WINDOWS\Temp\sig44C.tmp moved successfully.
C:\WINDOWS\Temp\sig44D.tmp moved successfully.
C:\WINDOWS\Temp\sig44E.tmp moved successfully.
C:\WINDOWS\Temp\sig44F.tmp moved successfully.
C:\WINDOWS\Temp\sig450.tmp moved successfully.
C:\WINDOWS\Temp\sig451.tmp moved successfully.
C:\WINDOWS\Temp\sig452.tmp moved successfully.
C:\WINDOWS\Temp\sig453.tmp moved successfully.
C:\WINDOWS\Temp\sig454.tmp moved successfully.
C:\WINDOWS\Temp\sig455.tmp moved successfully.
C:\WINDOWS\Temp\sig456.tmp moved successfully.
C:\WINDOWS\Temp\sig457.tmp moved successfully.
C:\WINDOWS\Temp\sig458.tmp moved successfully.
C:\WINDOWS\Temp\sig459.tmp moved successfully.
C:\WINDOWS\Temp\sig45A.tmp moved successfully.
C:\WINDOWS\Temp\sig45B.tmp moved successfully.
C:\WINDOWS\Temp\sig45C.tmp moved successfully.
C:\WINDOWS\Temp\sig45D.tmp moved successfully.
C:\WINDOWS\Temp\sig45E.tmp moved successfully.
C:\WINDOWS\Temp\sig45F.tmp moved successfully.
C:\WINDOWS\Temp\sig461.tmp moved successfully.
C:\WINDOWS\Temp\SBC116.tmp moved successfully.
C:\WINDOWS\Temp\sig463.tmp moved successfully.
C:\WINDOWS\Temp\sig464.tmp moved successfully.
C:\WINDOWS\Temp\sig465.tmp moved successfully.
C:\WINDOWS\Temp\sig466.tmp moved successfully.
C:\WINDOWS\Temp\sig467.tmp moved successfully.
C:\WINDOWS\Temp\sig468.tmp moved successfully.
C:\WINDOWS\Temp\sig469.tmp moved successfully.
C:\WINDOWS\Temp\sig46A.tmp moved successfully.
C:\WINDOWS\Temp\sig46B.tmp moved successfully.
C:\WINDOWS\Temp\sig46C.tmp moved successfully.
C:\WINDOWS\Temp\sig46D.tmp moved successfully.
C:\WINDOWS\Temp\sig5A4.tmp moved successfully.
C:\WINDOWS\Temp\sig5A5.tmp moved successfully.
C:\WINDOWS\Temp\sig470.tmp moved successfully.
C:\WINDOWS\Temp\sig471.tmp moved successfully.
C:\WINDOWS\Temp\sig472.tmp moved successfully.
C:\WINDOWS\Temp\sig473.tmp moved successfully.
C:\WINDOWS\Temp\SBC117.tmp moved successfully.
C:\WINDOWS\Temp\sig475.tmp moved successfully.
C:\WINDOWS\Temp\sig5A6.tmp moved successfully.
C:\WINDOWS\Temp\sig5A8.tmp moved successfully.
C:\WINDOWS\Temp\sig5A9.tmp moved successfully.
C:\WINDOWS\Temp\sig5AA.tmp moved successfully.
C:\WINDOWS\Temp\sig5AB.tmp moved successfully.
C:\WINDOWS\Temp\sig47D.tmp moved successfully.
C:\WINDOWS\Temp\sig47E.tmp moved successfully.
C:\WINDOWS\Temp\sig47F.tmp moved successfully.
C:\WINDOWS\Temp\sig480.tmp moved successfully.
C:\WINDOWS\Temp\sig481.tmp moved successfully.
C:\WINDOWS\Temp\sig482.tmp moved successfully.
C:\WINDOWS\Temp\sig483.tmp moved successfully.
C:\WINDOWS\Temp\sig484.tmp moved successfully.
C:\WINDOWS\Temp\sig5B3.tmp moved successfully.
C:\WINDOWS\Temp\SBC118.tmp moved successfully.
C:\WINDOWS\Temp\sig5AC.tmp moved successfully.
C:\WINDOWS\Temp\sig5AD.tmp moved successfully.
C:\WINDOWS\Temp\sig5AE.tmp moved successfully.
C:\WINDOWS\Temp\sig5AF.tmp moved successfully.
C:\WINDOWS\Temp\sig5B0.tmp moved successfully.
C:\WINDOWS\Temp\sig48E.tmp moved successfully.
C:\WINDOWS\Temp\sig48F.tmp moved successfully.
C:\WINDOWS\Temp\sig491.tmp moved successfully.
C:\WINDOWS\Temp\sig5B1.tmp moved successfully.
C:\WINDOWS\Temp\sig494.tmp moved successfully.
C:\WINDOWS\Temp\sig496.tmp moved successfully.
C:\WINDOWS\Temp\sig498.tmp moved successfully.
C:\WINDOWS\Temp\sig499.tmp moved successfully.
C:\WINDOWS\Temp\sig49A.tmp moved successfully.
C:\WINDOWS\Temp\sig49B.tmp moved successfully.
C:\WINDOWS\Temp\sig49C.tmp moved successfully.
C:\WINDOWS\Temp\sig49D.tmp moved successfully.
C:\WINDOWS\Temp\sig5B2.tmp moved successfully.
C:\WINDOWS\Temp\sig5B4.tmp moved successfully.
C:\WINDOWS\Temp\sig5B5.tmp moved successfully.
C:\WINDOWS\Temp\sig5B6.tmp moved successfully.
C:\WINDOWS\Temp\sig5B7.tmp moved successfully.
C:\WINDOWS\Temp\sig4A0.tmp moved successfully.
C:\WINDOWS\Temp\sig4A1.tmp moved successfully.
C:\WINDOWS\Temp\sig4A2.tmp moved successfully.
C:\WINDOWS\Temp\sig4A3.tmp moved successfully.
C:\WINDOWS\Temp\sig4A4.tmp moved successfully.
C:\WINDOWS\Temp\sig4A5.tmp moved successfully.
C:\WINDOWS\Temp\sig4A6.tmp moved successfully.
C:\WINDOWS\Temp\sig4A7.tmp moved successfully.
C:\WINDOWS\Temp\sig4A8.tmp moved successfully.
C:\WINDOWS\Temp\sig4A9.tmp moved successfully.
C:\WINDOWS\Temp\sig4AA.tmp moved successfully.
C:\WINDOWS\Temp\sig4AB.tmp moved successfully.
C:\WINDOWS\Temp\sig4AC.tmp moved successfully.
C:\WINDOWS\Temp\sig4AD.tmp moved successfully.
C:\WINDOWS\Temp\sig4AE.tmp moved successfully.
C:\WINDOWS\Temp\sig4AF.tmp moved successfully.
C:\WINDOWS\Temp\sig4B0.tmp moved successfully.
C:\WINDOWS\Temp\sig4B1.tmp moved successfully.
C:\WINDOWS\Temp\sig4B2.tmp moved successfully.
C:\WINDOWS\Temp\sig4B3.tmp moved successfully.
C:\WINDOWS\Temp\sig4B4.tmp moved successfully.
C:\WINDOWS\Temp\sig4B5.tmp moved successfully.
C:\WINDOWS\Temp\sig4B6.tmp moved successfully.
C:\WINDOWS\Temp\sig4B7.tmp moved successfully.
C:\WINDOWS\Temp\sig4B8.tmp moved successfully.
C:\WINDOWS\Temp\sig4B9.tmp moved successfully.
C:\WINDOWS\Temp\sig4BA.tmp moved successfully.
C:\WINDOWS\Temp\sig4BB.tmp moved successfully.
C:\WINDOWS\Temp\sig4BC.tmp moved successfully.
C:\WINDOWS\Temp\sig4BD.tmp moved successfully.
C:\WINDOWS\Temp\sig4BE.tmp moved successfully.
C:\WINDOWS\Temp\sig4BF.tmp moved successfully.
C:\WINDOWS\Temp\sig4C0.tmp moved successfully.
C:\WINDOWS\Temp\sig4C1.tmp moved successfully.
C:\WINDOWS\Temp\sig4C2.tmp moved successfully.
C:\WINDOWS\Temp\sig4C3.tmp moved successfully.
C:\WINDOWS\Temp\sig4C4.tmp moved successfully.
C:\WINDOWS\Temp\sig4C5.tmp moved successfully.
C:\WINDOWS\Temp\sig4C6.tmp moved successfully.
C:\WINDOWS\Temp\sig4C7.tmp moved successfully.
C:\WINDOWS\Temp\sig4C8.tmp moved successfully.
C:\WINDOWS\Temp\sig4C9.tmp moved successfully.
C:\WINDOWS\Temp\sig4CA.tmp moved successfully.
C:\WINDOWS\Temp\sig4CB.tmp moved successfully.
C:\WINDOWS\Temp\sig4CC.tmp moved successfully.
C:\WINDOWS\Temp\sig4CD.tmp moved successfully.
C:\WINDOWS\Temp\sig4CE.tmp moved successfully.
C:\WINDOWS\Temp\sig4CF.tmp moved successfully.
C:\WINDOWS\Temp\sig4D0.tmp moved successfully.
C:\WINDOWS\Temp\sig4D1.tmp moved successfully.
C:\WINDOWS\Temp\sig4D2.tmp moved successfully.
C:\WINDOWS\Temp\sig4D3.tmp moved successfully.
C:\WINDOWS\Temp\sig4D4.tmp moved successfully.
C:\WINDOWS\Temp\sig4D5.tmp moved successfully.
C:\WINDOWS\Temp\sig4D6.tmp moved successfully.
C:\WINDOWS\Temp\sig4D7.tmp moved successfully.
C:\WINDOWS\Temp\sig4D8.tmp moved successfully.
C:\WINDOWS\Temp\sig4D9.tmp moved successfully.
C:\WINDOWS\Temp\sig4DA.tmp moved successfully.
C:\WINDOWS\Temp\sig4DB.tmp moved successfully.
C:\WINDOWS\Temp\sig4DC.tmp moved successfully.
C:\WINDOWS\Temp\sig5B8.tmp moved successfully.
C:\WINDOWS\Temp\sig4DE.tmp moved successfully.
C:\WINDOWS\Temp\sig4DF.tmp moved successfully.
C:\WINDOWS\Temp\sig4E0.tmp moved successfully.
C:\WINDOWS\Temp\sig5B9.tmp moved successfully.
C:\WINDOWS\Temp\sig4E2.tmp moved successfully.
C:\WINDOWS\Temp\sig5BA.tmp moved successfully.
C:\WINDOWS\Temp\sig4E4.tmp moved successfully.
C:\WINDOWS\Temp\sig5BB.tmp moved successfully.
C:\WINDOWS\Temp\sig4E6.tmp moved successfully.
C:\WINDOWS\Temp\sig5BC.tmp moved successfully.
C:\WINDOWS\Temp\sig4E8.tmp moved successfully.
C:\WINDOWS\Temp\sig5BD.tmp moved successfully.
C:\WINDOWS\Temp\sig4EA.tmp moved successfully.
C:\WINDOWS\Temp\sig5BE.tmp moved successfully.
C:\WINDOWS\Temp\sig4EC.tmp moved successfully.
C:\WINDOWS\Temp\sig4ED.tmp moved successfully.
C:\WINDOWS\Temp\sig4EE.tmp moved successfully.
C:\WINDOWS\Temp\sig4EF.tmp moved successfully.
C:\WINDOWS\Temp\sig4F0.tmp moved successfully.
C:\WINDOWS\Temp\sig4F1.tmp moved successfully.
C:\WINDOWS\Temp\sig4F2.tmp moved successfully.
C:\WINDOWS\Temp\sig4F3.tmp moved successfully.
C:\WINDOWS\Temp\sig4F4.tmp moved successfully.
C:\WINDOWS\Temp\sig4F5.tmp moved successfully.
C:\WINDOWS\Temp\sig4F6.tmp moved successfully.
C:\WINDOWS\Temp\sig5C0.tmp moved successfully.
C:\WINDOWS\Temp\sig5C1.tmp moved successfully.
C:\WINDOWS\Temp\sig4F9.tmp moved successfully.
C:\WINDOWS\Temp\sig4FA.tmp moved successfully.
C:\WINDOWS\Temp\sig5C2.tmp moved successfully.
C:\WINDOWS\Temp\sig4FC.tmp moved successfully.
C:\WINDOWS\Temp\sig5C3.tmp moved successfully.
C:\WINDOWS\Temp\sig4FE.tmp moved successfully.
C:\WINDOWS\Temp\sig506.tmp moved successfully.
C:\WINDOWS\Temp\sig508.tmp moved successfully.
C:\WINDOWS\Temp\sig509.tmp moved successfully.
C:\WINDOWS\Temp\sig50A.tmp moved successfully.
C:\WINDOWS\Temp\sig50B.tmp moved successfully.
C:\WINDOWS\Temp\sig50C.tmp moved successfully.
C:\WINDOWS\Temp\sig50D.tmp moved successfully.
C:\WINDOWS\Temp\sig517.tmp moved successfully.
C:\WINDOWS\Temp\sig518.tmp moved successfully.
C:\WINDOWS\Temp\sig51A.tmp moved successfully.
C:\WINDOWS\Temp\sig51D.tmp moved successfully.
C:\WINDOWS\Temp\sig51F.tmp moved successfully.
C:\WINDOWS\Temp\sig521.tmp moved successfully.
C:\WINDOWS\Temp\sig522.tmp moved successfully.
C:\WINDOWS\Temp\sig523.tmp moved successfully.
C:\WINDOWS\Temp\sig524.tmp moved successfully.
C:\WINDOWS\Temp\sig525.tmp moved successfully.
C:\WINDOWS\Temp\sig526.tmp moved successfully.
C:\WINDOWS\Temp\sig460.tmp moved successfully.
C:\WINDOWS\Temp\sig462.tmp moved successfully.
C:\WINDOWS\Temp\sig46E.tmp moved successfully.
C:\WINDOWS\Temp\sig46F.tmp moved successfully.
C:\WINDOWS\Temp\sig474.tmp moved successfully.
C:\WINDOWS\Temp\sig476.tmp moved successfully.
C:\WINDOWS\Temp\sig477.tmp moved successfully.
C:\WINDOWS\Temp\sig478.tmp moved successfully.
C:\WINDOWS\Temp\sig479.tmp moved successfully.
C:\WINDOWS\Temp\sig47A.tmp moved successfully.
C:\WINDOWS\Temp\sig47B.tmp moved successfully.
C:\WINDOWS\Temp\sig47C.tmp moved successfully.
C:\WINDOWS\Temp\sig485.tmp moved successfully.
C:\WINDOWS\Temp\sig486.tmp moved successfully.
C:\WINDOWS\Temp\sig487.tmp moved successfully.
C:\WINDOWS\Temp\sig488.tmp moved successfully.
C:\WINDOWS\Temp\sig489.tmp moved successfully.
C:\WINDOWS\Temp\sig48A.tmp moved successfully.
C:\WINDOWS\Temp\sig48B.tmp moved successfully.
C:\WINDOWS\Temp\sig48C.tmp moved successfully.
C:\WINDOWS\Temp\sig48D.tmp moved successfully.
C:\WINDOWS\Temp\sig490.tmp moved successfully.
C:\WINDOWS\Temp\sig492.tmp moved successfully.
C:\WINDOWS\Temp\sig493.tmp moved successfully.
C:\WINDOWS\Temp\sig495.tmp moved successfully.
C:\WINDOWS\Temp\sig497.tmp moved successfully.
C:\WINDOWS\Temp\sig49E.tmp moved successfully.
C:\WINDOWS\Temp\sig49F.tmp moved successfully.
C:\WINDOWS\Temp\sig4DD.tmp moved successfully.
C:\WINDOWS\Temp\sig4E1.tmp moved successfully.
C:\WINDOWS\Temp\sig4E3.tmp moved successfully.
C:\WINDOWS\Temp\sig4E5.tmp moved successfully.
C:\WINDOWS\Temp\sig4E7.tmp moved successfully.
C:\WINDOWS\Temp\sig4E9.tmp moved successfully.
C:\WINDOWS\Temp\sig4EB.tmp moved successfully.
C:\WINDOWS\Temp\sig4F7.tmp moved successfully.
C:\WINDOWS\Temp\sig4F8.tmp moved successfully.
C:\WINDOWS\Temp\sig4FB.tmp moved successfully.
C:\WINDOWS\Temp\sig4FD.tmp moved successfully.
C:\WINDOWS\Temp\sig4FF.tmp moved successfully.
C:\WINDOWS\Temp\sig500.tmp moved successfully.
C:\WINDOWS\Temp\sig501.tmp moved successfully.
C:\WINDOWS\Temp\sig502.tmp moved successfully.
C:\WINDOWS\Temp\sig503.tmp moved successfully.
C:\WINDOWS\Temp\sig504.tmp moved successfully.
C:\WINDOWS\Temp\sig505.tmp moved successfully.
C:\WINDOWS\Temp\sig507.tmp moved successfully.
C:\WINDOWS\Temp\sig50E.tmp moved successfully.
C:\WINDOWS\Temp\sig50F.tmp moved successfully.
C:\WINDOWS\Temp\sig510.tmp moved successfully.
C:\WINDOWS\Temp\sig511.tmp moved successfully.
C:\WINDOWS\Temp\sig512.tmp moved successfully.
C:\WINDOWS\Temp\sig513.tmp moved successfully.
C:\WINDOWS\Temp\sig514.tmp moved successfully.
C:\WINDOWS\Temp\sig515.tmp moved successfully.
C:\WINDOWS\Temp\sig516.tmp moved successfully.
C:\WINDOWS\Temp\sig519.tmp moved successfully.
C:\WINDOWS\Temp\sig51B.tmp moved successfully.
C:\WINDOWS\Temp\sig51C.tmp moved successfully.
C:\WINDOWS\Temp\sig51E.tmp moved successfully.
C:\WINDOWS\Temp\sig520.tmp moved successfully.
C:\WINDOWS\Temp\sig527.tmp moved successfully.
C:\WINDOWS\Temp\sig528.tmp moved successfully.
C:\WINDOWS\Temp\sig529.tmp moved successfully.
C:\WINDOWS\Temp\sig52A.tmp moved successfully.
C:\WINDOWS\Temp\sig52B.tmp moved successfully.
C:\WINDOWS\Temp\sig52C.tmp moved successfully.
C:\WINDOWS\Temp\sig52D.tmp moved successfully.
C:\WINDOWS\Temp\sig52E.tmp moved successfully.
C:\WINDOWS\Temp\sig52F.tmp moved successfully.
C:\WINDOWS\Temp\sig530.tmp moved successfully.
C:\WINDOWS\Temp\sig531.tmp moved successfully.
C:\WINDOWS\Temp\sig532.tmp moved successfully.
C:\WINDOWS\Temp\sig534.tmp moved successfully.
C:\WINDOWS\Temp\sig536.tmp moved successfully.
C:\WINDOWS\Temp\sig537.tmp moved successfully.
C:\WINDOWS\Temp\sig538.tmp moved successfully.
C:\WINDOWS\Temp\sig539.tmp moved successfully.
C:\WINDOWS\Temp\sig53A.tmp moved successfully.
C:\WINDOWS\Temp\sig53B.tmp moved successfully.
C:\WINDOWS\Temp\sig53C.tmp moved successfully.
C:\WINDOWS\Temp\sig53D.tmp moved successfully.
C:\WINDOWS\Temp\sig53E.tmp moved successfully.
C:\WINDOWS\Temp\sig53F.tmp moved successfully.
C:\WINDOWS\Temp\sig540.tmp moved successfully.
C:\WINDOWS\Temp\sig543.tmp moved successfully.
C:\WINDOWS\Temp\sig544.tmp moved successfully.
C:\WINDOWS\Temp\sig545.tmp moved successfully.
C:\WINDOWS\Temp\sig546.tmp moved successfully.
C:\WINDOWS\Temp\sig548.tmp moved successfully.
C:\WINDOWS\Temp\sig550.tmp moved successfully.
C:\WINDOWS\Temp\sig551.tmp moved successfully.
C:\WINDOWS\Temp\sig552.tmp moved successfully.
C:\WINDOWS\Temp\sig553.tmp moved successfully.
C:\WINDOWS\Temp\sig554.tmp moved successfully.
C:\WINDOWS\Temp\sig555.tmp moved successfully.
C:\WINDOWS\Temp\sig556.tmp moved successfully.
C:\WINDOWS\Temp\sig557.tmp moved successfully.
C:\WINDOWS\Temp\sig558.tmp moved successfully.
C:\WINDOWS\Temp\sig562.tmp moved successfully.
C:\WINDOWS\Temp\sig563.tmp moved successfully.
C:\WINDOWS\Temp\sig565.tmp moved successfully.
C:\WINDOWS\Temp\sig568.tmp moved successfully.
C:\WINDOWS\Temp\sig56A.tmp moved successfully.
C:\WINDOWS\Temp\sig56C.tmp moved successfully.
C:\WINDOWS\Temp\sig56D.tmp moved successfully.
C:\WINDOWS\Temp\sig56E.tmp moved successfully.
C:\WINDOWS\Temp\sig56F.tmp moved successfully.
C:\WINDOWS\Temp\sig570.tmp moved successfully.
C:\WINDOWS\Temp\sig571.tmp moved successfully.
C:\WINDOWS\Temp\sig533.tmp moved successfully.
C:\WINDOWS\Temp\sig535.tmp moved successfully.
C:\WINDOWS\Temp\sig541.tmp moved successfully.
C:\WINDOWS\Temp\sig542.tmp moved successfully.
C:\WINDOWS\Temp\sig547.tmp moved successfully.
C:\WINDOWS\Temp\sig549.tmp moved successfully.
C:\WINDOWS\Temp\sig54A.tmp moved successfully.
C:\WINDOWS\Temp\sig54B.tmp moved successfully.
C:\WINDOWS\Temp\sig54C.tmp moved successfully.
C:\WINDOWS\Temp\sig54D.tmp moved successfully.
C:\WINDOWS\Temp\sig54E.tmp moved successfully.
C:\WINDOWS\Temp\sig54F.tmp moved successfully.
C:\WINDOWS\Temp\sig559.tmp moved successfully.
C:\WINDOWS\Temp\sig55A.tmp moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 422931 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 226782 bytes
->Flash cache emptied: 723 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: John
->Temp folder emptied: 505247496 bytes
->Temporary Internet Files folder emptied: 9478081 bytes
->Java cache emptied: 44577270 bytes
->Flash cache emptied: 1527882 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 202878474 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 95278133 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 29386058 bytes

Total Files Cleaned = 848,00 mb

[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService

User: LocalService
->Flash cache emptied: 0 bytes

User: Administrator

User: John
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 11242011_114357

Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast_\Webshlock.txt not found!

Registry entries deleted on Reboot...

Nejde i v jiném prohlížeči?

NO, teďka budu vypadatjako dacan, ale jinej prohlížeč naž IE nemam

.. no zkusim se tomu teda pověnovat a stáhnout něco jiného - - co doporučujete - firefox, mozzilu nebo operu?

A ohledně toho spojení s iphone - máte na to nějakáý názor? Děkuji, JK

VIRY.CZ

Nejde mi v IE otevřít www.YOUTUBE.com

Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com

Re: Nejde mi v IE otevřít www.YOUTUBE.com