VIRY.CZ

Dobrej den preji,

tak jsem tu zase tentokrat opet s jinym PC,
tady je log kdyby jste na to mohl mrknout.
Moc dekuji

Veronika

Logfile of random's system information tool 1.09 (written by random/random)
Run by petr at 2011-12-20 20:33:46
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 688 GB (96%) free of 715 GB
Total RAM: 3327 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:33:52, on 20.12.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
E:\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\petr\Dokumenty\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\petr.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss ... 71bc96579c
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Avira SearchFree Toolbar plus WebGuard - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE196411-53FB-4A5F-896E-2A0D4177A5C5}: NameServer = 10.0.0.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe

--
End of file - 8077 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Norton Security Scan for petr.job
C:\WINDOWS\tasks\RMSchedule.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 2830765&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll

C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\
ffxtlbr@babylon.com
{8c5878d0-6106-423b-aaa8-144c143dbf44}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\
conduit.xml
daemon-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll [2011-08-14 270960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-10-26 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Avira SearchFree Toolbar plus WebGuard - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-07-27 1493160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-10 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Avira SearchFree Toolbar plus WebGuard - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-07-27 1493160]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll [2011-08-14 237680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-01-16 13680640]
"nwiz"=nwiz.exe /install []
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-04-21 281768]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-07-27 397992]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-01-16 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2011-08-11 20053608]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=E:\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-12-23 143360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\uTorrent.exe"="E:\uTorrent.exe:*:Enabled:µTorrent"
"E:\Counter-Strike\hl.exe"="E:\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"F:\BitLord\BitLord.exe"="F:\BitLord\BitLord.exe:*:Enabled:BitLord"
"F:\BitLord2\BitLord.exe"="F:\BitLord2\BitLord.exe:*:Enabled:Bitlord2"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"F:\BitTorrent\bittorrent.exe"="F:\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"F:\uTorrent.exe"="F:\uTorrent.exe:*:Enabled:µTorrent"
"E:\Skype\Phone\Skype.exe"="E:\Skype\Phone\Skype.exe:*:Enabled:Skype"
"E:\Warcraft III\Warcraft III.exe"="E:\Warcraft III\Warcraft III.exe:*:Disabled:Warcraft III"
"E:\Nová složka\hl.exe"="E:\Nová složka\hl.exe:*:Enabled:Half-Life Launcher"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3filter"=ac3filter.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2011-12-20 20:33:46 ----D---- C:\rsit
2011-12-20 20:33:46 ----D---- C:\Program Files\trend micro
2011-12-18 16:21:33 ----D---- C:\Program Files\Common Files\Java
2011-12-18 16:08:07 ----D---- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
2011-12-15 16:20:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2639417$
2011-12-15 16:20:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2011-12-15 16:19:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2633952$
2011-12-15 16:19:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2011-12-15 16:19:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2011-12-15 16:19:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2011-12-15 16:19:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2633171$
2011-12-09 07:44:04 ----D---- C:\Program Files\NVIDIA Corporation
2011-12-09 07:43:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-12-09 07:43:20 ----D---- C:\WINDOWS\Logs

======List of files/folders modified in the last 1 month======

2011-12-20 20:33:46 ----RD---- C:\Program Files
2011-12-20 20:33:34 ----D---- C:\WINDOWS\Prefetch
2011-12-20 20:22:07 ----SHD---- C:\WINDOWS\TEMP
2011-12-20 20:22:07 ----D---- C:\WINDOWS\system32\CatRoot2
2011-12-20 19:40:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-12-20 13:46:49 ----D---- C:\WINDOWS\Minidump
2011-12-20 13:46:46 ----D---- C:\WINDOWS
2011-12-20 07:29:07 ----D---- C:\Program Files\Mozilla Firefox
2011-12-18 19:00:21 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2011-12-18 16:21:33 ----SHD---- C:\WINDOWS\Installer
2011-12-18 16:21:33 ----D---- C:\Program Files\Common Files
2011-12-18 16:21:24 ----D---- C:\WINDOWS\system32
2011-12-18 16:21:22 ----D---- C:\Program Files\Java
2011-12-18 16:15:01 ----D---- C:\Documents and Settings\petr\Data aplikací\uTorrent
2011-12-18 16:09:30 ----D---- C:\Program Files\DAEMON Tools Toolbar
2011-12-16 11:55:57 ----SD---- C:\Documents and Settings\petr\Data aplikací\Microsoft
2011-12-15 16:20:36 ----HD---- C:\WINDOWS\inf
2011-12-15 16:20:35 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-12-15 16:20:33 ----A---- C:\WINDOWS\imsins.BAK
2011-12-15 16:20:26 ----D---- C:\Program Files\Internet Explorer
2011-12-15 16:20:22 ----D---- C:\WINDOWS\ie8updates
2011-12-15 16:20:19 ----HD---- C:\WINDOWS\$hf_mig$
2011-12-15 16:19:23 ----A---- C:\WINDOWS\system32\MRT.exe
2011-12-15 15:35:44 ----D---- C:\WINDOWS\system32\CatRoot
2011-12-13 18:32:59 ----A---- C:\WINDOWS\ntbtlog.txt
2011-12-10 12:49:08 ----D---- C:\WINDOWS\system32\drivers
2011-12-09 08:28:06 ----D---- C:\WINDOWS\system32\DirectX
2011-12-09 08:15:50 ----D---- C:\Program Files\Common Files\Symantec Shared
2011-11-29 16:10:50 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2008-11-12 145952]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-08-29 691696]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-07-21 138192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-07-21 66616]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2011-08-11 6367848]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-01-16 6305120]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-08-01 54784]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-08-01 22016]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 axqvx3b9;axqvx3b9; C:\WINDOWS\system32\drivers\axqvx3b9.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-07-21 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
R2 AntiVirWebService;Avira AntiVir WebGuard; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2011-05-09 428200]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-01-16 163908]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-10-01 632792]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-13 135664]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-13 135664]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Zdravím, Verunko.

Vy nás ale zásobujete, pane Karfík! Tak se jdeme na tu hrůzu podívat.
Jak tak na to zběžně koukám, tak budeš asi provádět školení mezi svými kamarády o nebezpečnosti internetu a zabezpečení počítačů, protože tento je pěkně zaliskaný.

Takže jako první zase pryč s toolbary. Jsou tu Babylon toolbar, Ask Toolbar a Avira SearchFree Toolbar. Všechny, které půjdou, odinstaluj. Zbytek dočistím já.


Potom fixni v HJT tyto položky:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss ... 71bc96579c
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Avira SearchFree Toolbar plus WebGuard - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?

"Fixnout" znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
HJT najdeš zde: C:\Program Files\trend micro\petr.exe

A protože tam jsou porůznu ještě zbytky po toolbarech a podobně, pustíme na to opět náš oblíbený OTL.

Takže dále stáhni OTL z tohoto odkazu a ulož jej na Plochu.

• Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
• Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
• Zaškrtni okénko Pro všechny uživatele.
• Zaškrtni okénko Kontrola na havěť "LOP".
• Zaškrtni okénko Kontrola na havěť "Purity".
• Stáři souborů změň z 30 dnů na 7 dnů!
• Do spodního okénka Vlastní skenování/opravy vlož tento script:

• Klikni na tlačítko [Prohledat].
• Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
• Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

OTL Extras logfile created on: 21.12.2011 15:25:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\petr\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,72 Gb Available Physical Memory | 83,75% Memory free
5,09 Gb Paging File | 4,68 Gb Available in Paging File | 91,96% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,63 Gb Total Space | 671,79 Gb Free Space | 96,16% Space Free | Partition Type: NTFS
Drive D: | 2,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 120,19 Gb Total Space | 96,77 Gb Free Space | 80,52% Space Free | Partition Type: NTFS
Drive F: | 112,69 Gb Total Space | 44,16 Gb Free Space | 39,18% Space Free | Partition Type: NTFS

Computer Name: PC1 | User Name: petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"E:\uTorrent.exe" = E:\uTorrent.exe:*:Enabled:µTorrent
"E:\Counter-Strike\hl.exe" = E:\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"F:\BitLord\BitLord.exe" = F:\BitLord\BitLord.exe:*:Enabled:BitLord -- (www.BitLord.com)
"F:\BitLord2\BitLord.exe" = F:\BitLord2\BitLord.exe:*:Enabled:Bitlord2
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA
"F:\BitTorrent\bittorrent.exe" = F:\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
"F:\uTorrent.exe" = F:\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"E:\Warcraft III\Warcraft III.exe" = E:\Warcraft III\Warcraft III.exe:*:Disabled:Warcraft III -- (Blizzard Entertainment)
"E:\Nová složka\hl.exe" = E:\Nová složka\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1C00A3F1-6DA0-49F8-94E4-01AB6FC01029}" = Nero 7 Essentials
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216026FF}" = Java(TM) 6 Update 30
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{ADE91A13-434D-4229-00BC-182BAD607303}" = Need for Speed™ Most Wanted
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Counter-Strike" = Counter-Strike 1.0
"DivX Setup" = DivX Setup
"DVD Shrink_is1" = DVD Shrink 3.2
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.0 Full
"Mafia II_is1" = Mafia II
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"Registry Mechanic_is1" = Registry Mechanic 10.0
"uTorrent" = µTorrent
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.00 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoFiltre Studio X" = PhotoFiltre Studio X

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 21.11.2011 9:29:16 | Computer Name = PC1 | Source = ESENT | ID = 439
Description = Catalog Database (1100) Pro soubor C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032

Error - 21.11.2011 9:29:16 | Computer Name = PC1 | Source = ESENT | ID = 454
Description = Catalog Database (1100) Při zotavení či obnovení databáze došlo k
neočekávané chybě -1032.

Error - 22.11.2011 12:40:31 | Computer Name = PC1 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace uTorrent.exe, verze 3.0.0.25806, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 10.12.2011 6:11:52 | Computer Name = PC1 | Source = ESENT | ID = 490
Description = svchost (1100) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error - 10.12.2011 6:12:32 | Computer Name = PC1 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 7.0.1.4288, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 10.12.2011 8:49:25 | Computer Name = PC1 | Source = ESENT | ID = 490
Description = svchost (1104) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error - 11.12.2011 5:11:03 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x84e08dc6.

Error - 11.12.2011 6:29:39 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace rundll32.exe, verze 5.1.2600.5512, chybující modul
hotplug.dll, verze 5.1.2600.5512, adresa chyby 0x00006901.

Error - 11.12.2011 6:29:44 | Computer Name = PC1 | Source = Application Error | ID = 1000
Description = Chybující aplikace drwtsn32.exe, verze 5.1.2600.0, chybující modul
dbghelp.dll, verze 5.1.2600.5512, adresa chyby 0x0001295d.

Error - 11.12.2011 17:51:04 | Computer Name = PC1 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace hl.exe, verze 1.1.1.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

[ System Events ]
Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:29 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:30 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:30 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:30 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 21.12.2011 10:05:30 | Computer Name = PC1 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126


< End of report >

OTL logfile created on: 21.12.2011 15:25:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\petr\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,72 Gb Available Physical Memory | 83,75% Memory free
5,09 Gb Paging File | 4,68 Gb Available in Paging File | 91,96% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,63 Gb Total Space | 671,79 Gb Free Space | 96,16% Space Free | Partition Type: NTFS
Drive D: | 2,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 120,19 Gb Total Space | 96,77 Gb Free Space | 80,52% Space Free | Partition Type: NTFS
Drive F: | 112,69 Gb Total Space | 44,16 Gb Free Space | 39,18% Space Free | Partition Type: NTFS

Computer Name: PC1 | User Name: petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.12.21 15:08:52 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\petr\Dokumenty\Stažené soubory\OTL.exe
PRC - [2011.09.30 20:12:03 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.04.21 06:54:05 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011.04.21 06:53:33 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011.11.28 16:17:08 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{8c5878d0-6106-423b-aaa8-144c143dbf44}\components\RadioWMPCoreGecko7.dll
MOD - [2011.11.13 12:16:56 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.09.30 20:12:02 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.07.21 14:12:31 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011.03.31 21:35:56 | 000,331,776 | ---- | M] () -- F:\rarlng.dll
MOD - [2011.03.02 11:40:52 | 000,140,288 | ---- | M] () -- F:\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.01.15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)


========== Driver Services (SafeList) ==========

DRV - [2011.08.29 20:43:35 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011.08.11 12:30:44 | 006,367,848 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2011.07.21 11:15:21 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.07.21 11:15:19 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.06.17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.06.17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.11.12 15:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.08.01 09:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008.08.01 09:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "data:text/plain,browser.startup.homepage=http://www.seznam.cz/firefox/"
FF - prefs.js..CommunityToolbar.SearchFromAddressBarSavedUrl: "data:text/plain,keyword.URL=http://search.seznam.cz/?sourceid=FF_3&q="
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "Bitlord 1.2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 2830765&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.11.18 11:32:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.09.30 20:12:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.08.24 21:05:58 | 000,000,000 | ---D | M]

[2011.08.13 07:03:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Extensions
[2011.12.18 16:09:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions
[2011.11.28 17:15:22 | 000,000,000 | ---D | M] (Bitlord 1.2 Community Toolbar) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{8c5878d0-6106-423b-aaa8-144c143dbf44}
[2011.12.07 12:54:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011.10.21 21:40:12 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.10.29 12:34:54 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\ffxtlbr@babylon.com
[2011.07.24 14:33:30 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\conduit.xml
[2011.08.29 20:43:37 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\daemon-search.xml
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.08.22 19:29:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{8C5878D0-6106-423B-AAA8-144C143DBF44}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
[2011.11.18 11:32:13 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011.08.22 19:29:46 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.08.14 21:18:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011.09.30 20:12:03 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.29 12:34:47 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.09.30 20:12:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.30 20:12:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.30 20:12:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.30 20:12:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.30 20:11:59 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: DNA Plug-in (Enabled) = C:\Program Files\DNA\plugins\npbtdna.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.4_0\

O1 HOSTS File: ([2004.08.18 13:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE196411-53FB-4A5F-896E-2A0D4177A5C5}: NameServer = 10.0.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.08.11 09:07:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\rsit
[2011.12.18 16:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.12.18 16:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.12.21 15:27:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.21 15:26:09 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.21 15:22:45 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.21 15:22:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.20 13:46:46 | 2145,386,496 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011.12.17 11:36:35 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.12.15 19:13:09 | 000,118,952 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.12.15 16:20:33 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.12.21 15:26:09 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.08 14:43:08 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.08.29 20:52:34 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.08.22 21:02:38 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2011.08.22 20:54:34 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.08.13 07:03:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.08.11 14:45:27 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.08.11 14:45:27 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.08.11 14:45:25 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2011.08.11 14:45:20 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.08.11 14:42:23 | 000,000,251 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.08.11 14:32:46 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011.08.11 12:19:34 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2011.08.11 11:00:06 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.08.11 10:59:16 | 000,118,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.08.11 09:08:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.08.11 09:05:52 | 000,022,916 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.16 02:42:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.01.16 02:42:00 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009.01.16 02:42:00 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.01.16 02:42:00 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009.01.16 02:42:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.01.16 02:42:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.01.16 02:42:00 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009.01.16 02:42:00 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2004.08.18 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.08.18 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.18 13:00:00 | 000,435,260 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.18 13:00:00 | 000,432,004 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2004.08.18 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.18 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2004.08.18 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.18 13:00:00 | 000,079,062 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2004.08.18 13:00:00 | 000,068,156 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.18 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.18 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2004.08.18 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.18 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.18 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.08.18 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.18 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.08.29 20:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.10.29 12:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.10.29 12:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2011.12.18 19:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.08.13 23:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Babylon
[2011.12.18 16:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[2011.08.22 19:59:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitLord
[2011.08.24 21:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitTorrent
[2011.08.12 11:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Canneverbe_Limited
[2011.08.29 20:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DAEMON Tools Lite
[2011.11.18 11:32:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DDMSettings
[2011.09.16 15:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\PhotoFiltre Studio X
[2011.08.22 19:59:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Python-Eggs
[2011.10.30 21:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Registry Mechanic
[2011.11.08 14:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Uniblue
[2011.12.18 16:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\uTorrent
[2011.08.11 11:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\WinBatch
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========



========== Custom Scans ==========


< >

< netsvc >

< >

OTL logfile created on: 21.12.2011 15:25:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\petr\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,72 Gb Available Physical Memory | 83,75% Memory free
5,09 Gb Paging File | 4,68 Gb Available in Paging File | 91,96% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,63 Gb Total Space | 671,79 Gb Free Space | 96,16% Space Free | Partition Type: NTFS
Drive D: | 2,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 120,19 Gb Total Space | 96,77 Gb Free Space | 80,52% Space Free | Partition Type: NTFS
Drive F: | 112,69 Gb Total Space | 44,16 Gb Free Space | 39,18% Space Free | Partition Type: NTFS

Computer Name: PC1 | User Name: petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.12.21 15:08:52 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\petr\Dokumenty\Stažené soubory\OTL.exe
PRC - [2011.09.30 20:12:03 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.04.21 06:54:05 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011.04.21 06:53:33 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011.11.28 16:17:08 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{8c5878d0-6106-423b-aaa8-144c143dbf44}\components\RadioWMPCoreGecko7.dll
MOD - [2011.11.13 12:16:56 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.09.30 20:12:02 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.07.21 14:12:31 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011.03.31 21:35:56 | 000,331,776 | ---- | M] () -- F:\rarlng.dll
MOD - [2011.03.02 11:40:52 | 000,140,288 | ---- | M] () -- F:\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.01.15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)


========== Driver Services (SafeList) ==========

DRV - [2011.08.29 20:43:35 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011.08.11 12:30:44 | 006,367,848 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2011.07.21 11:15:21 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.07.21 11:15:19 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.06.17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.06.17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.11.12 15:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.08.01 09:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008.08.01 09:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "data:text/plain,browser.startup.homepage=http://www.seznam.cz/firefox/"
FF - prefs.js..CommunityToolbar.SearchFromAddressBarSavedUrl: "data:text/plain,keyword.URL=http://search.seznam.cz/?sourceid=FF_3&q="
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "Bitlord 1.2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 2830765&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.11.18 11:32:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.09.30 20:12:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.08.24 21:05:58 | 000,000,000 | ---D | M]

[2011.08.13 07:03:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Extensions
[2011.12.18 16:09:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions
[2011.11.28 17:15:22 | 000,000,000 | ---D | M] (Bitlord 1.2 Community Toolbar) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{8c5878d0-6106-423b-aaa8-144c143dbf44}
[2011.12.07 12:54:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011.10.21 21:40:12 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.10.29 12:34:54 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\ffxtlbr@babylon.com
[2011.07.24 14:33:30 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\conduit.xml
[2011.08.29 20:43:37 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\daemon-search.xml
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.08.22 19:29:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{8C5878D0-6106-423B-AAA8-144C143DBF44}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
[2011.11.18 11:32:13 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011.08.22 19:29:46 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.08.14 21:18:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011.09.30 20:12:03 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.29 12:34:47 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.09.30 20:12:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.30 20:12:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.30 20:12:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.30 20:12:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.30 20:11:59 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: DNA Plug-in (Enabled) = C:\Program Files\DNA\plugins\npbtdna.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.4_0\

O1 HOSTS File: ([2004.08.18 13:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE196411-53FB-4A5F-896E-2A0D4177A5C5}: NameServer = 10.0.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.08.11 09:07:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\rsit
[2011.12.18 16:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.12.18 16:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.12.21 15:27:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.21 15:26:09 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.21 15:22:45 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.21 15:22:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.20 13:46:46 | 2145,386,496 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011.12.17 11:36:35 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.12.15 19:13:09 | 000,118,952 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.12.15 16:20:33 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.12.21 15:26:09 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.08 14:43:08 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.08.29 20:52:34 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.08.22 21:02:38 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2011.08.22 20:54:34 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.08.13 07:03:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.08.11 14:45:27 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.08.11 14:45:27 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.08.11 14:45:25 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2011.08.11 14:45:20 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.08.11 14:42:23 | 000,000,251 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.08.11 14:32:46 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011.08.11 12:19:34 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2011.08.11 11:00:06 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.08.11 10:59:16 | 000,118,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.08.11 09:08:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.08.11 09:05:52 | 000,022,916 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.16 02:42:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.01.16 02:42:00 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009.01.16 02:42:00 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.01.16 02:42:00 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009.01.16 02:42:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.01.16 02:42:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.01.16 02:42:00 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009.01.16 02:42:00 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2004.08.18 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.08.18 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.18 13:00:00 | 000,435,260 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.18 13:00:00 | 000,432,004 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2004.08.18 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.18 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2004.08.18 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.18 13:00:00 | 000,079,062 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2004.08.18 13:00:00 | 000,068,156 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.18 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.18 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2004.08.18 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.18 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.18 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.08.18 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.18 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.08.29 20:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.10.29 12:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.10.29 12:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2011.12.18 19:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.08.13 23:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Babylon
[2011.12.18 16:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[2011.08.22 19:59:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitLord
[2011.08.24 21:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitTorrent
[2011.08.12 11:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Canneverbe_Limited
[2011.08.29 20:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DAEMON Tools Lite
[2011.11.18 11:32:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DDMSettings
[2011.09.16 15:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\PhotoFiltre Studio X
[2011.08.22 19:59:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Python-Eggs
[2011.10.30 21:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Registry Mechanic
[2011.11.08 14:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Uniblue
[2011.12.18 16:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\uTorrent
[2011.08.11 11:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\WinBatch
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========



========== Custom Scans ==========


< >

< netsvc >

< >

Dekuji za pomoc, je to PC mojeho brachy a nevim jak ho poucit no, tvrdi ze nic nestahuje tak nevim

Ver píše:Dekuji za pomoc, je to PC mojeho brachy a nevim jak ho poucit no, tvrdi ze nic nestahuje tak nevim

Ale stahuje, Verunko a to jako blázen, tak ať nelže. Na co by mu asi tak byli klienti BitTorrent a µTorrent?! Lakovat může jedině tak lavičky na nádraží, ne mě.

Každopádně jsi mi sem vložila jednu část logu dvakrát. Mrkni se na to prosím, editni a místo toho, co je tu dvakrát mi sem vlož zbytek logu, který chybí, ať na to mohu mrknout. Děkuji.

OTL logfile created on: 24.12.2011 13:22:47 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\petr\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,72 Gb Available Physical Memory | 83,78% Memory free
5,09 Gb Paging File | 4,61 Gb Available in Paging File | 90,56% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,63 Gb Total Space | 593,75 Gb Free Space | 84,99% Space Free | Partition Type: NTFS

Computer Name: PC1 | User Name: petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.12.24 13:22:18 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\petr\Dokumenty\Stažené soubory\OTL(1).exe
PRC - [2011.12.22 13:01:44 | 000,619,352 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
PRC - [2011.12.22 13:01:44 | 000,494,424 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
PRC - [2011.09.30 20:12:03 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.04.21 06:54:05 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011.04.21 06:53:33 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011.12.06 05:04:42 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\components\RadioWMPCoreGecko7.dll
MOD - [2011.11.13 12:16:56 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.11.10 22:43:26 | 000,138,072 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare 5\ASCv5ExtMenu.dll
MOD - [2011.09.30 20:12:02 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.07.29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011.07.21 14:12:31 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011.04.21 16:54:40 | 000,347,024 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare 5\madexcept_.bpl
MOD - [2011.04.21 16:54:40 | 000,179,088 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare 5\madbasic_.bpl
MOD - [2011.04.21 16:54:40 | 000,046,480 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare 5\maddisAsm_.bpl
MOD - [2007.06.07 20:11:12 | 000,380,928 | ---- | M] () -- C:\WINDOWS\system32\ac3filter.acm


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.12.22 13:01:44 | 000,494,424 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe -- (AdvancedSystemCareService5)
SRV - [2011.07.21 11:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.04.21 06:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.01 12:27:22 | 000,632,792 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.01.15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)


========== Driver Services (SafeList) ==========

DRV - [2011.08.29 20:43:35 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011.08.11 12:30:44 | 006,367,848 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2011.07.21 11:15:21 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.07.21 11:15:19 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.06.17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.06.17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.11.12 15:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2008.08.01 09:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008.08.01 09:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1482476501-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "data:text/plain,browser.startup.homepage=http://www.seznam.cz/firefox/"
FF - prefs.js..CommunityToolbar.SearchFromAddressBarSavedUrl: "data:text/plain,keyword.URL=http://search.seznam.cz/?sourceid=FF_3&q="
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "Bitlord 1.2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 2830765&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.11.18 11:32:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.09.30 20:12:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.08.24 21:05:58 | 000,000,000 | ---D | M]

[2011.08.13 07:03:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Extensions
[2011.12.24 13:19:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions
[2011.12.07 12:54:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011.10.21 21:40:12 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.10.29 12:34:54 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\ffxtlbr@babylon.com
[2011.07.24 14:33:30 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\conduit.xml
[2011.08.29 20:43:37 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\daemon-search.xml
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.08.22 19:29:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.12.18 16:21:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2011.08.13 07:03:12 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\MEC85GSA.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
[2011.11.18 11:32:13 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011.08.22 19:29:46 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.08.14 21:18:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011.09.30 20:12:03 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.29 12:34:47 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.09.30 20:12:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.30 20:12:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.09.30 20:12:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.30 20:12:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.09.30 20:11:59 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: DNA Plug-in (Enabled) = C:\Program Files\DNA\plugins\npbtdna.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\petr\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.4_0\

O1 HOSTS File: ([2004.08.18 13:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-1482476501-682003330-725345543-1004..\Run: [Advanced SystemCare 5] C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1482476501-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE196411-53FB-4A5F-896E-2A0D4177A5C5}: NameServer = 10.0.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.08.11 09:07:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.12.24 12:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\petr\Dokumenty\EA Games
[2011.12.24 12:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\EA Games
[2011.12.23 09:16:21 | 000,000,000 | ---D | C] -- C:\fotky
[2011.12.23 08:32:33 | 000,000,000 | ---D | C] -- C:\zaloha
[2011.12.22 13:14:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2011.12.22 13:14:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2011.12.22 13:14:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011.12.22 13:14:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2011.12.22 13:01:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.12.22 13:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\petr\Data aplikací\IObit
[2011.12.22 13:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Advanced SystemCare 5
[2011.12.22 13:01:12 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2011.12.22 12:36:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.12.20 20:33:46 | 000,000,000 | ---D | C] -- C:\rsit
[2011.12.18 16:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.12.18 16:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.12.24 13:23:35 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.24 12:27:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.24 12:25:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.12.24 12:24:18 | 000,007,680 | ---- | M] () -- C:\Documents and Settings\petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.12.24 12:04:53 | 000,000,248 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2011.12.24 12:04:46 | 000,001,372 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Fotky.lnk
[2011.12.24 12:00:20 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.12.24 12:00:20 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.24 12:00:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.22 13:14:46 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011.12.22 12:36:15 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.12.22 13:14:31 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb
[2011.12.22 13:14:02 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011.12.22 13:12:33 | 000,020,312 | ---- | C] () -- C:\WINDOWS\System32\RegistryDefragBootTime.exe
[2011.12.21 18:04:25 | 000,319,488 | R--- | C] () -- C:\WINDOWS\System32\MafiaSetup.exe
[2011.12.21 15:26:09 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.08 14:43:08 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.08.29 20:52:34 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.08.22 21:02:38 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2011.08.22 20:54:34 | 000,007,680 | ---- | C] () -- C:\Documents and Settings\petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.08.13 07:03:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.08.11 14:45:27 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.08.11 14:45:27 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.08.11 14:45:25 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2011.08.11 14:45:20 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.08.11 14:42:23 | 000,000,248 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.08.11 14:32:46 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011.08.11 12:19:34 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2011.08.11 11:00:06 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.08.11 10:59:16 | 000,118,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.08.11 09:08:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.08.11 09:05:52 | 000,022,916 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.01.16 02:42:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.01.16 02:42:00 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009.01.16 02:42:00 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.01.16 02:42:00 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009.01.16 02:42:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.01.16 02:42:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.01.16 02:42:00 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009.01.16 02:42:00 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2004.08.18 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.08.18 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.18 13:00:00 | 000,435,260 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.18 13:00:00 | 000,432,004 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2004.08.18 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.18 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2004.08.18 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.18 13:00:00 | 000,079,062 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2004.08.18 13:00:00 | 000,068,156 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.18 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.18 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2004.08.18 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.18 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.18 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.08.18 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.18 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2011.08.29 20:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.10.29 12:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.12.22 13:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.10.29 12:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2011.12.18 19:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.08.13 23:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Babylon
[2011.12.18 16:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[2011.08.22 19:59:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitLord
[2011.08.24 21:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitTorrent
[2011.08.12 11:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Canneverbe_Limited
[2011.08.29 20:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DAEMON Tools Lite
[2011.11.18 11:32:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DDMSettings
[2011.12.24 12:11:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\IObit
[2011.09.16 15:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\PhotoFiltre Studio X
[2011.08.22 19:59:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Python-Eggs
[2011.10.30 21:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Registry Mechanic
[2011.11.08 14:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Uniblue
[2011.12.18 16:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\uTorrent
[2011.08.11 11:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\WinBatch
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========



========== Custom Scans ==========


< >

< netsvc >

< >


< MD5 for: ATAPI.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.18 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2004.08.18 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[11 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\DirectX\*.tmp files -> C:\WINDOWS\system32\DirectX\*.tmp -> ]
[2 C:\WINDOWS\TEMP\*.tmp files -> C:\WINDOWS\TEMP\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.08.12 13:33:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Adobe
[2011.10.04 14:37:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Ahead
[2011.08.13 22:09:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Avira
[2011.10.29 12:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Babylon
[2011.12.18 16:08:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BabylonToolbar
[2011.08.22 19:59:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitLord
[2011.08.24 21:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\BitTorrent
[2011.08.12 11:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Canneverbe_Limited
[2011.10.08 13:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\CyberLink
[2011.08.29 20:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DAEMON Tools Lite
[2011.11.18 11:32:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DDMSettings
[2011.08.13 22:19:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\DivX
[2011.09.16 15:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Identities
[2011.12.24 12:11:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\IObit
[2011.08.12 13:33:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Macromedia
[2011.12.16 11:55:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\petr\Data aplikací\Microsoft
[2011.08.13 07:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Mozilla
[2011.09.16 15:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\PhotoFiltre Studio X
[2011.08.22 19:59:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Python-Eggs
[2011.10.30 21:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Registry Mechanic
[2011.10.30 21:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Skype
[2011.08.22 19:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Sun
[2011.11.08 14:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\Uniblue
[2011.12.18 16:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\uTorrent
[2011.08.11 11:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\WinBatch
[2011.08.29 21:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\petr\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2011.12.24 12:00:20 | 000,000,932 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.12.24 13:27:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.12.09 08:10:14 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for petr.job
[2011.12.18 19:00:21 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011.08.29 20:43:35 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2011.08.20 11:03:52 | 000,262,144 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.08.20 08:57:34 | 000,262,144 | ---- | M] () -- C:\WINDOWS\System32\config\security.sav
[2011.08.20 11:03:52 | 019,136,512 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.08.20 11:03:52 | 006,029,312 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.12.24 12:00:20 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %userprofile%\Plocha\*.* /s >
[2011.08.13 22:37:22 | 000,000,577 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Counter-Strike v1.6 - 21.lnk
[2011.11.18 11:32:15 | 000,001,431 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\DivX Movies.lnk
[2011.07.23 08:21:54 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\DVD Shrink 3.2.lnk
[2011.12.24 12:04:46 | 000,001,372 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Fotky.lnk
[2009.11.16 16:36:20 | 000,172,792 | ---- | M] (ICQ, LLC.) -- C:\Documents and Settings\petr\Plocha\ICQ.exe
[2011.09.30 09:15:14 | 002,146,145 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\OPTIBOX 8750 HDCICX_RYPL109.47_270911_ES4C1N0_pz.bin
[2011.09.16 15:58:37 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\PhotoFiltre Studio X.lnk
[2004.11.10 02:58:10 | 004,788,224 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\speed2.exe
[2011.11.15 18:18:42 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Windows Media Player.lnk
[2011.08.12 17:13:31 | 000,000,633 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - Frozen Throne.lnk
[2011.09.22 15:14:41 | 000,000,538 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - NFSMW_DISC1_HKZonda_by_P2PZone.org.lnk
[2011.10.30 18:29:49 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - Skype.lnk
[2011.08.13 07:31:53 | 000,000,537 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - Warcraft III.lnk
[2001.09.09 14:16:28 | 000,000,290 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - WINCMD32.lnk
[2011.08.13 07:30:21 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - Wow tbc.lnk
[2011.08.13 07:30:01 | 000,000,470 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Zástupce - Wow WOTLK.lnk
[2011.09.02 14:55:46 | 020,912,914 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\01. On the Backs of Angels.mp3
[2011.11.15 18:26:04 | 016,788,487 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\02. Build Me Up, Break Me Down.mp3
[2011.09.02 15:02:24 | 024,481,237 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\03. Lost Not Forgotten.mp3
[2011.09.02 15:04:44 | 016,711,374 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\04. This is the Life.mp3
[2011.09.02 15:08:52 | 026,469,678 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\05. Bridges in the Sky.mp3
[2011.09.02 15:13:28 | 027,380,817 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\06. Outcry.mp3
[2011.09.02 15:14:52 | 009,455,601 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\07. Far From Heaven.mp3
[2011.09.02 15:18:58 | 029,834,253 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\08. Breaking All Illusions.mp3
[2011.09.02 15:20:52 | 013,069,907 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Dream Theater - 2011 - A Dramatic Turn Of Events 320\09. Beneath The Surface.mp3
[2011.02.08 21:34:26 | 075,416,124 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Hear n Aid\Hear N Aid - Stars (Dio,Dokken,Queensryche,Iron Maiden,Judas Priest).mpg
[2011.02.11 09:46:39 | 000,006,144 | -HS- | M] () -- C:\Documents and Settings\petr\Plocha\Hear n Aid\Thumbs.db
[2011.09.05 20:37:50 | 002,024,415 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0986.JPG
[2011.09.05 20:38:00 | 001,927,927 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0987.JPG
[2011.09.05 20:38:08 | 002,334,850 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0988.JPG
[2011.09.06 07:24:48 | 002,090,990 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0989.JPG
[2011.09.06 07:24:56 | 002,197,352 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0990.JPG
[2011.09.06 09:05:00 | 003,082,823 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0991.JPG
[2011.09.06 09:05:06 | 003,004,441 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0992.JPG
[2011.09.06 09:55:20 | 002,029,380 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0995.JPG
[2011.09.06 09:55:28 | 002,122,694 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0996.JPG
[2011.09.06 10:35:54 | 002,249,330 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG0997.JPG
[2011.09.06 12:20:06 | 002,677,794 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1001.JPG
[2011.09.06 12:20:20 | 002,478,370 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1002.JPG
[2011.09.06 12:22:34 | 003,127,076 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1003.JPG
[2011.09.06 12:22:54 | 001,778,830 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1004.JPG
[2011.09.06 12:23:22 | 002,403,310 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1005.JPG
[2011.09.06 12:25:42 | 002,704,337 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1006.JPG
[2011.09.06 12:25:54 | 002,581,663 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1007.JPG
[2011.09.06 13:16:02 | 002,413,102 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1009.JPG
[2011.09.06 13:16:40 | 001,894,326 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1010.JPG
[2011.09.06 13:16:44 | 002,344,723 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1011.JPG
[2011.09.06 15:04:04 | 002,714,370 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1013.JPG
[2011.09.06 15:04:20 | 002,324,690 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1014.JPG
[2011.09.06 15:05:06 | 002,532,895 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1015.JPG
[2011.09.06 15:05:26 | 002,488,671 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1016.JPG
[2011.09.06 15:05:40 | 002,524,120 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1017.JPG
[2011.09.06 15:06:16 | 002,756,809 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1018.JPG
[2011.09.06 15:06:36 | 002,518,215 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1019.JPG
[2011.09.06 15:07:10 | 002,671,172 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1020.JPG
[2011.09.06 15:07:26 | 002,652,946 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1021.JPG
[2011.09.06 15:07:52 | 002,342,032 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1022.JPG
[2011.09.06 15:09:00 | 003,284,844 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1023.JPG
[2011.09.06 15:09:12 | 002,294,312 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1024.JPG
[2011.09.06 15:09:22 | 002,556,365 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1025.JPG
[2011.09.06 16:19:24 | 002,212,101 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1028.JPG
[2011.09.06 17:32:58 | 002,071,089 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1029.JPG
[2011.09.06 17:51:44 | 003,062,460 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1033.JPG
[2011.09.06 18:12:10 | 001,618,285 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1036.JPG
[2011.09.07 06:57:20 | 002,491,976 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1037.JPG
[2011.09.07 06:57:36 | 001,998,682 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1038.JPG
[2011.09.07 06:57:44 | 002,714,015 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1039.JPG
[2011.09.07 07:36:40 | 003,745,693 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1040.JPG
[2011.09.07 07:37:14 | 003,779,362 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1041.JPG
[2011.09.07 07:37:24 | 003,662,955 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1042.JPG
[2011.09.07 07:37:38 | 004,507,157 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1043.JPG
[2011.09.07 07:37:44 | 003,071,270 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1044.JPG
[2011.09.07 07:37:58 | 003,102,773 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1045.JPG
[2011.09.07 07:42:30 | 003,327,241 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1046.JPG
[2011.09.07 07:42:38 | 002,969,480 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1047.JPG
[2011.09.07 07:43:56 | 002,770,815 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1048.JPG
[2011.09.07 07:57:22 | 002,530,674 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1049.JPG
[2011.09.07 07:58:08 | 001,791,212 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1050.JPG
[2011.09.07 07:58:46 | 002,782,434 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1051.JPG
[2011.09.07 07:58:56 | 002,117,826 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1052.JPG
[2011.09.07 07:59:22 | 002,071,766 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1053.JPG
[2011.09.07 07:59:30 | 002,113,060 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1054.JPG
[2011.09.07 08:52:06 | 002,470,466 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1055.JPG
[2011.09.07 08:54:38 | 002,663,689 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1061.JPG
[2011.09.07 08:55:00 | 002,730,611 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1062.JPG
[2011.09.07 08:55:18 | 002,187,322 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1063.JPG
[2011.09.07 08:55:26 | 002,168,549 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1064.JPG
[2011.09.07 08:55:50 | 001,510,744 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1065.JPG
[2011.09.07 08:56:14 | 002,282,939 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1066.JPG
[2011.09.07 08:58:32 | 001,855,864 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1069.JPG
[2011.09.07 08:58:48 | 001,945,974 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1070.JPG
[2011.09.07 08:58:56 | 002,207,198 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1071.JPG
[2011.09.07 08:59:52 | 002,165,508 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1073.JPG
[2011.09.07 09:00:06 | 002,556,527 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1074.JPG
[2011.09.07 09:02:04 | 001,813,623 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1076.JPG
[2011.09.07 09:02:30 | 002,546,938 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1077.JPG
[2011.09.07 09:02:38 | 002,353,023 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1078.JPG
[2011.09.07 09:02:54 | 002,386,083 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1079.JPG
[2011.09.07 09:05:16 | 002,354,459 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1080.JPG
[2011.09.07 09:05:52 | 002,381,127 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1082.JPG
[2011.09.07 09:07:14 | 002,088,649 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1083.JPG
[2011.09.07 09:10:06 | 002,316,610 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1085.JPG
[2011.09.07 09:23:34 | 002,647,335 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1086.JPG
[2011.09.07 09:23:44 | 003,202,244 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1087.JPG
[2011.09.07 10:08:30 | 003,068,712 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1088.JPG
[2011.09.07 10:09:00 | 003,013,077 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1089.JPG
[2011.09.07 10:09:08 | 003,009,902 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1090.JPG
[2011.09.07 10:09:36 | 003,309,367 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1091.JPG
[2011.09.07 10:09:42 | 003,382,951 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1092.JPG
[2011.09.07 10:39:48 | 001,692,656 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1093.JPG
[2011.09.07 10:40:04 | 002,132,766 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1094.JPG
[2011.09.07 10:41:02 | 002,454,504 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1095.JPG
[2011.09.07 10:41:16 | 002,222,347 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1096.JPG
[2011.09.07 10:41:26 | 002,186,061 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1097.JPG
[2011.09.07 10:43:06 | 004,372,854 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1098.JPG
[2011.09.07 10:43:16 | 003,703,215 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1099.JPG
[2011.09.07 10:43:36 | 003,777,405 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1100.JPG
[2011.09.07 10:45:10 | 004,321,677 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1101.JPG
[2011.09.07 10:45:16 | 003,036,242 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1102.JPG
[2011.09.07 10:46:54 | 003,564,794 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1103.JPG
[2011.09.07 10:47:10 | 003,469,670 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1104.JPG
[2011.09.07 10:47:38 | 003,682,451 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1105.JPG
[2011.09.07 11:11:08 | 002,173,415 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1107.JPG
[2011.09.07 11:12:32 | 002,304,996 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1109.JPG
[2011.09.07 11:13:22 | 002,667,596 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1110.JPG
[2011.09.07 11:13:48 | 002,141,374 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1111.JPG
[2011.09.07 11:14:06 | 002,101,963 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1112.JPG
[2011.09.07 15:22:08 | 004,165,505 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1113.JPG
[2011.09.07 15:23:26 | 004,492,464 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1114.JPG
[2011.09.07 17:06:40 | 001,718,726 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1115.JPG
[2011.09.07 17:11:22 | 002,330,069 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1116.JPG
[2011.09.07 17:14:38 | 001,803,709 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1117.JPG
[2011.09.07 18:42:56 | 002,293,132 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1118.JPG
[2011.09.07 18:43:16 | 001,619,574 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1119.JPG
[2011.09.08 10:23:22 | 002,176,647 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1122.JPG
[2011.09.08 12:43:56 | 002,928,731 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1123.JPG
[2011.09.08 12:44:04 | 002,003,843 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1124.JPG
[2011.09.08 12:45:22 | 002,702,386 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1125.JPG
[2011.09.08 12:45:36 | 002,588,992 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1126.JPG
[2011.09.08 12:50:56 | 002,288,084 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1127.JPG
[2011.09.08 12:51:24 | 001,971,396 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1128.JPG
[2011.09.08 14:44:18 | 002,610,372 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1129.JPG
[2011.09.08 14:44:24 | 002,738,075 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1130.JPG
[2011.09.08 14:44:58 | 001,973,644 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1131.JPG
[2011.09.08 14:45:18 | 002,151,577 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1132.JPG
[2011.09.08 15:21:46 | 001,928,626 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1133.JPG
[2011.09.08 15:22:06 | 002,691,822 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1135.JPG
[2011.09.08 15:23:06 | 001,821,379 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1138.JPG
[2011.09.08 15:23:20 | 002,470,135 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1139.JPG
[2011.09.08 15:23:28 | 002,247,199 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1140.JPG
[2011.09.08 15:24:02 | 002,739,146 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1141.JPG
[2011.09.08 15:24:18 | 002,982,883 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1142.JPG
[2011.09.08 15:24:50 | 002,725,675 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1143.JPG
[2011.09.08 15:25:42 | 003,156,031 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1144.JPG
[2011.09.08 15:26:00 | 002,301,935 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1145.JPG
[2011.09.08 15:26:26 | 002,768,037 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1146.JPG
[2011.09.08 15:26:58 | 002,710,223 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1147.JPG
[2011.09.08 15:28:26 | 002,341,108 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1148.JPG
[2011.09.08 15:32:14 | 002,432,842 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1150.JPG
[2011.09.08 15:33:24 | 003,048,926 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1151.JPG
[2011.09.08 15:36:22 | 002,045,571 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1152.JPG
[2011.09.08 15:36:26 | 002,627,332 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1153.JPG
[2011.09.08 15:36:58 | 002,814,393 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1154.JPG
[2011.09.08 15:37:34 | 002,139,269 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1155.JPG
[2011.09.08 15:37:50 | 002,550,859 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1156.JPG
[2011.09.08 15:37:58 | 002,376,768 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1157.JPG
[2011.09.08 15:38:08 | 002,630,806 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1158.JPG
[2011.09.08 15:38:38 | 002,272,922 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1160.JPG
[2011.09.08 15:41:54 | 002,315,265 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1161.JPG
[2011.09.08 15:42:00 | 002,427,042 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1162.JPG
[2011.09.08 15:42:22 | 001,934,486 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1163.JPG
[2011.09.08 15:42:36 | 002,227,654 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1164.JPG
[2011.09.08 15:42:52 | 002,793,226 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1165.JPG
[2011.09.08 15:43:00 | 001,886,542 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1166.JPG
[2011.09.08 15:46:28 | 002,386,817 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1169.JPG
[2011.09.08 15:46:36 | 002,408,903 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1170.JPG
[2011.09.08 15:49:44 | 001,943,671 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1171.JPG
[2011.09.08 15:50:16 | 002,828,032 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1172.JPG
[2011.09.08 15:50:36 | 002,241,203 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1173.JPG
[2011.09.08 15:50:50 | 002,304,796 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1174.JPG
[2011.09.08 16:36:10 | 002,172,879 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1177.JPG
[2011.09.08 16:36:18 | 001,815,601 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1178.JPG
[2011.09.08 16:36:26 | 001,618,858 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1179.JPG
[2011.09.08 16:36:32 | 001,969,354 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1180.JPG
[2011.09.08 16:36:42 | 002,173,009 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1181.JPG
[2011.09.08 16:37:08 | 002,083,057 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1182.JPG
[2011.09.08 16:37:20 | 001,922,787 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1183.JPG
[2011.09.08 16:37:32 | 001,740,645 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1184.JPG
[2011.09.08 16:37:50 | 001,916,614 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1186.JPG
[2011.09.08 16:37:58 | 002,091,559 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1187.JPG
[2011.09.08 17:58:18 | 002,511,386 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1189.JPG
[2011.09.08 19:02:48 | 002,838,118 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1190.JPG
[2011.09.08 19:03:06 | 002,126,492 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1191.JPG
[2011.09.08 19:03:14 | 002,306,372 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1192.JPG
[2011.09.08 19:03:46 | 001,984,304 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1193.JPG
[2011.09.09 04:44:14 | 002,283,812 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1194.JPG
[2011.09.09 04:44:20 | 002,126,235 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1195.JPG
[2011.09.09 05:07:46 | 001,498,161 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1196.JPG
[2011.09.09 05:07:50 | 001,459,598 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1197.JPG
[2011.09.09 05:08:02 | 001,538,937 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1198.JPG
[2011.09.09 05:08:04 | 001,546,623 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1199.JPG
[2011.09.09 09:42:22 | 002,598,085 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1200.JPG
[2011.09.09 09:42:32 | 002,428,049 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1201.JPG
[2011.09.09 09:42:34 | 002,671,913 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1202.JPG
[2011.09.09 09:44:42 | 002,632,939 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1203.JPG
[2011.09.09 14:58:44 | 002,526,064 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1205.JPG
[2011.09.09 14:59:00 | 002,657,329 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1206.JPG
[2011.09.09 14:59:08 | 002,692,233 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1207.JPG
[2011.09.09 14:59:28 | 003,129,410 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1208.JPG
[2011.09.09 14:59:32 | 002,136,733 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1209.JPG
[2011.09.09 14:59:34 | 002,149,449 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1210.JPG
[2011.09.09 15:00:16 | 002,326,189 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1211.JPG
[2011.09.09 15:08:00 | 002,045,026 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1212.JPG
[2011.09.09 15:10:06 | 003,143,094 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1213.JPG
[2011.09.09 15:10:30 | 003,059,088 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1214.JPG
[2011.09.09 15:10:38 | 003,278,020 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1215.JPG
[2011.09.09 15:13:12 | 001,900,153 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1216.JPG
[2011.09.09 15:15:46 | 002,510,184 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1217.JPG
[2011.09.09 15:17:18 | 002,387,808 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1218.JPG
[2011.09.09 15:17:20 | 002,210,916 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1219.JPG
[2011.09.09 15:18:30 | 002,227,319 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1220.JPG
[2011.09.09 15:20:02 | 002,071,506 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1221.JPG
[2011.09.09 15:22:48 | 002,724,551 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1222.JPG
[2011.09.09 15:23:22 | 002,661,220 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1223.JPG
[2011.09.09 15:23:30 | 002,632,501 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1224.JPG
[2011.09.09 15:24:24 | 002,216,582 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1225.JPG
[2011.09.09 15:26:10 | 002,758,234 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1226.JPG
[2011.09.09 15:26:50 | 003,265,096 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1228.JPG
[2011.09.09 15:28:12 | 002,426,776 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1229.JPG
[2011.09.09 15:52:14 | 001,984,789 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1230.JPG
[2011.09.09 15:52:38 | 002,252,089 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1231.JPG
[2011.09.09 16:10:32 | 002,883,035 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1232.JPG
[2011.09.09 16:15:50 | 002,301,252 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1233.JPG
[2011.09.09 16:16:08 | 002,807,264 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1234.JPG
[2011.09.09 16:16:16 | 003,021,977 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1235.JPG
[2011.09.09 16:22:14 | 002,317,467 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1236.JPG
[2011.09.09 16:22:56 | 002,910,134 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1237.JPG
[2011.09.09 16:41:04 | 002,463,793 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1238.JPG
[2011.09.09 16:41:14 | 002,144,015 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1239.JPG
[2011.09.09 16:42:44 | 003,021,849 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1240.JPG
[2011.09.09 16:43:02 | 002,712,178 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1241.JPG
[2011.09.09 16:44:20 | 002,228,475 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1242.JPG
[2011.09.09 16:44:28 | 002,320,676 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1243.JPG
[2011.09.09 16:45:00 | 002,244,512 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1244.JPG
[2011.09.09 16:45:04 | 002,482,146 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1245.JPG
[2011.09.09 16:45:18 | 002,340,783 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1246.JPG
[2011.09.09 16:45:22 | 001,857,103 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1247.JPG
[2011.09.09 16:45:40 | 001,952,863 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1248.JPG
[2011.09.09 16:45:46 | 001,738,756 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1249.JPG
[2011.09.09 16:46:52 | 001,899,880 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1251.JPG
[2011.09.09 16:46:58 | 001,963,786 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1252.JPG
[2011.09.09 16:47:24 | 002,078,823 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1253.JPG
[2011.09.09 16:48:18 | 002,865,914 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1254.JPG
[2011.09.09 16:48:42 | 001,810,733 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1255.JPG
[2011.09.09 16:49:38 | 002,399,477 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1256.JPG
[2011.09.09 16:50:00 | 002,228,198 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1257.JPG
[2011.09.09 16:50:00 | 002,483,525 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1258.JPG
[2011.09.09 16:50:10 | 002,259,993 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1259.JPG
[2011.09.09 16:53:12 | 002,612,171 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1260.JPG
[2011.09.09 17:04:28 | 002,228,442 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1261.JPG
[2011.09.09 17:04:48 | 002,594,885 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1262.JPG
[2011.09.09 17:06:46 | 002,511,630 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1264.JPG
[2011.09.09 17:06:58 | 002,454,522 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1265.JPG
[2011.09.09 17:09:54 | 001,547,973 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1266.JPG
[2011.09.09 17:10:04 | 002,091,262 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1267.JPG
[2011.09.09 17:12:20 | 002,167,194 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1268.JPG
[2011.09.09 17:44:08 | 001,842,548 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1269.JPG
[2011.09.09 17:44:18 | 001,841,731 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1270.JPG
[2011.09.09 17:44:34 | 003,303,131 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1271.JPG
[2011.09.09 18:12:40 | 002,557,162 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1273.JPG
[2011.09.09 18:13:16 | 002,683,310 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1274.JPG
[2011.09.09 18:14:10 | 002,424,508 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1278.JPG
[2011.09.09 18:17:28 | 002,179,012 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1279.JPG
[2011.09.09 18:21:12 | 001,798,530 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1280.JPG
[2011.09.09 18:35:04 | 001,992,517 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1281.JPG
[2011.09.09 18:35:20 | 001,580,553 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1282.JPG
[2011.09.09 18:35:30 | 002,770,930 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1283.JPG
[2011.09.09 18:45:26 | 002,034,769 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1284.JPG
[2011.09.09 18:45:34 | 002,366,523 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1285.JPG
[2011.09.09 18:45:42 | 002,117,408 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1286.JPG
[2011.09.09 18:47:00 | 002,314,401 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1287.JPG
[2011.09.09 18:47:06 | 002,276,205 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1288.JPG
[2011.09.09 19:20:22 | 002,368,435 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1289.JPG
[2011.09.09 19:24:36 | 001,697,075 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1292.JPG
[2011.09.09 19:47:30 | 002,796,081 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1293.JPG
[2011.09.09 19:47:44 | 003,024,201 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1294.JPG
[2011.09.09 19:48:30 | 002,105,222 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1295.JPG
[2011.09.09 20:09:58 | 001,761,907 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1296.JPG
[2011.09.10 10:30:30 | 002,946,903 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1297.JPG
[2011.09.10 10:31:00 | 003,108,818 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1298.JPG
[2011.09.10 10:31:48 | 002,645,244 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1300.JPG
[2011.09.10 10:32:12 | 003,052,126 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1301.JPG
[2011.09.10 10:32:28 | 002,341,816 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1302.JPG
[2011.09.10 10:32:48 | 002,455,791 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1304.JPG
[2011.09.10 10:33:30 | 002,807,577 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1306.JPG
[2011.09.10 10:33:50 | 002,533,372 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1307.JPG
[2011.09.10 10:39:32 | 002,720,539 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1310.JPG
[2011.09.10 11:45:06 | 002,362,834 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1311.JPG
[2011.09.10 11:45:12 | 002,331,979 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1312.JPG
[2011.09.10 12:25:08 | 003,540,910 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1313.JPG
[2011.09.10 12:25:34 | 003,392,424 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1314.JPG
[2011.09.10 12:26:46 | 003,195,706 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1315.JPG
[2011.09.10 12:26:50 | 002,711,761 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1316.JPG
[2011.09.10 12:30:08 | 002,868,866 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1317.JPG
[2011.09.10 12:30:40 | 002,714,020 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1318.JPG
[2011.09.10 12:30:48 | 002,786,608 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1319.JPG
[2011.09.10 13:51:04 | 002,238,078 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1322.JPG
[2011.09.10 13:51:22 | 002,667,406 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1323.JPG
[2011.09.10 13:51:30 | 002,679,511 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1324.JPG
[2011.09.10 13:51:40 | 002,614,110 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1325.JPG
[2011.09.10 13:52:30 | 002,372,990 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1329.JPG
[2011.09.10 13:53:24 | 002,268,037 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1330.JPG
[2011.09.10 13:53:34 | 003,129,859 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1331.JPG
[2011.09.10 16:04:58 | 002,935,714 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1332.JPG
[2011.09.10 18:25:40 | 002,181,243 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1337.JPG
[2011.09.10 18:25:48 | 001,511,622 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1338.JPG
[2011.09.10 18:26:02 | 002,272,847 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1339.JPG
[2011.09.11 11:38:12 | 002,644,662 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1341.JPG
[2011.09.11 11:38:28 | 002,660,163 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1342.JPG
[2011.09.11 13:53:38 | 002,853,971 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1344.JPG
[2011.09.11 13:53:44 | 002,282,413 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1345.JPG
[2011.09.11 13:54:08 | 002,570,890 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1346.JPG
[2011.09.11 13:54:10 | 003,470,708 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1347.JPG
[2011.09.11 13:54:24 | 002,606,811 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1348.JPG
[2011.09.11 13:54:48 | 002,820,658 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1350.JPG
[2011.09.11 13:54:58 | 003,043,434 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1351.JPG
[2011.09.11 13:55:06 | 003,233,199 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1352.JPG
[2011.09.11 13:55:14 | 003,547,727 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1353.JPG
[2011.09.11 13:55:20 | 003,330,190 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1354.JPG
[2011.09.11 13:55:28 | 003,361,195 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1355.JPG
[2011.09.11 14:16:38 | 003,599,281 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1356.JPG
[2011.09.11 14:17:16 | 002,637,169 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1357.JPG
[2011.09.11 14:17:30 | 002,346,710 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1358.JPG
[2011.09.11 14:17:46 | 002,104,264 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1359.JPG
[2011.09.11 14:17:56 | 003,187,675 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1360.JPG
[2011.09.11 14:18:24 | 002,444,914 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1361.JPG
[2011.09.11 14:18:54 | 002,761,809 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1362.JPG
[2011.09.11 15:08:12 | 003,132,942 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1364.JPG
[2011.09.11 15:08:28 | 002,665,659 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1365.JPG
[2011.09.11 15:09:42 | 002,539,826 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1369.JPG
[2011.09.11 15:10:08 | 002,619,792 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1370.JPG
[2011.09.11 15:10:18 | 001,651,212 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1371.JPG
[2011.09.11 16:11:10 | 002,204,867 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1372.JPG
[2011.09.11 16:11:16 | 002,770,748 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1373.JPG
[2011.09.11 16:11:24 | 003,559,034 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1374.JPG
[2011.09.11 17:12:22 | 002,696,133 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1375.JPG
[2011.09.11 17:12:34 | 002,026,893 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1376.JPG
[2011.09.11 17:12:42 | 001,885,841 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1377.JPG
[2011.09.11 17:12:48 | 001,967,423 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1378.JPG
[2011.09.11 17:13:02 | 002,031,401 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1379.JPG
[2011.09.11 17:13:22 | 002,040,854 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1380.JPG
[2011.09.11 17:13:34 | 001,876,676 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1381.JPG
[2011.09.11 17:13:40 | 002,430,317 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1382.JPG
[2011.09.11 17:20:04 | 002,496,150 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1383.JPG
[2011.09.11 17:20:14 | 003,005,614 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1384.JPG
[2011.09.11 17:20:30 | 002,273,202 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1386.JPG
[2011.09.11 17:20:36 | 002,758,636 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1387.JPG
[2011.09.11 18:11:08 | 002,044,240 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1388.JPG
[2011.09.11 18:11:16 | 001,357,269 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1389.JPG
[2011.09.11 18:12:40 | 002,239,987 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1390.JPG
[2011.09.11 18:12:48 | 002,075,089 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1391.JPG
[2011.09.11 18:12:56 | 002,332,927 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1392.JPG
[2011.09.11 19:22:30 | 001,101,784 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1394.JPG
[2011.09.11 19:22:46 | 001,074,614 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1395.JPG
[2011.09.11 19:23:04 | 000,817,499 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1396.JPG
[2011.09.12 04:30:08 | 002,300,979 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1397.JPG
[2011.09.12 04:30:28 | 002,032,659 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1398.JPG
[2011.09.12 04:30:34 | 002,291,362 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1399.JPG
[2011.09.12 04:30:40 | 002,427,165 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1400.JPG
[2011.09.12 04:30:58 | 001,848,712 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1401.JPG
[2011.09.12 05:18:58 | 001,479,061 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1402.JPG
[2011.09.12 05:19:06 | 001,557,029 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1403.JPG
[2011.09.12 05:19:14 | 001,723,329 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1404.JPG
[2011.09.12 05:19:20 | 001,605,377 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1405.JPG
[2011.09.12 05:19:28 | 001,800,915 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1406.JPG
[2011.09.12 05:19:46 | 001,766,108 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1407.JPG
[2011.09.12 06:39:48 | 003,470,674 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1409.JPG
[2011.09.12 06:40:00 | 003,229,355 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1410.JPG
[2011.09.12 06:42:16 | 001,850,543 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1412.JPG
[2011.09.12 06:42:48 | 001,703,854 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1413.JPG
[2011.09.12 06:43:08 | 001,799,264 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1414.JPG
[2011.09.12 06:43:46 | 002,175,654 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1415.JPG
[2011.09.12 06:46:20 | 002,108,928 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1416.JPG
[2011.09.12 06:46:32 | 002,242,744 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1417.JPG
[2011.09.12 06:46:38 | 002,125,534 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1418.JPG
[2011.09.12 06:49:10 | 002,619,055 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1419.JPG
[2011.09.12 06:49:20 | 002,419,054 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1420.JPG
[2011.09.12 06:49:24 | 002,648,184 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1421.JPG
[2011.09.12 06:49:58 | 004,356,330 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1422.JPG
[2011.09.12 06:50:10 | 002,224,155 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1423.JPG
[2011.09.12 06:50:16 | 003,069,252 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1424.JPG
[2011.09.12 06:50:42 | 003,354,381 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1425.JPG
[2011.09.12 06:51:06 | 002,986,801 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1427.JPG
[2011.09.12 06:51:12 | 002,192,880 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1428.JPG
[2011.09.12 06:51:14 | 002,771,557 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1429.JPG
[2011.09.12 06:51:34 | 002,788,777 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1430.JPG
[2011.09.12 06:58:50 | 003,015,057 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1432.JPG
[2011.09.12 06:59:04 | 002,550,751 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1433.JPG
[2011.09.12 06:59:44 | 002,917,847 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1434.JPG
[2011.09.12 06:59:54 | 002,924,355 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1435.JPG
[2011.09.12 07:00:02 | 002,488,250 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1436.JPG
[2011.09.12 07:00:46 | 002,525,625 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1437.JPG
[2011.09.12 07:00:58 | 003,039,583 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1438.JPG
[2011.09.12 07:01:06 | 002,978,345 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1439.JPG
[2011.09.12 07:52:12 | 002,549,696 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1440.JPG
[2011.09.12 07:52:34 | 002,795,390 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1441.JPG
[2011.09.12 07:52:48 | 002,726,965 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1442.JPG
[2011.09.12 07:52:56 | 002,669,248 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1443.JPG
[2011.09.12 07:53:04 | 002,474,341 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1444.JPG
[2011.09.12 08:41:58 | 002,250,488 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1445.JPG
[2011.09.12 08:42:24 | 002,548,283 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1447.JPG
[2011.09.12 08:44:02 | 003,001,968 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1448.JPG
[2011.09.12 08:45:26 | 002,097,336 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1450.JPG
[2011.09.12 08:45:38 | 001,633,630 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1451.JPG
[2011.09.12 08:53:38 | 002,232,616 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1455.JPG
[2011.09.12 10:13:26 | 002,745,046 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1457.JPG
[2011.09.12 10:13:46 | 003,318,864 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1458.JPG
[2011.09.12 10:15:12 | 003,281,066 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1460.JPG
[2011.09.12 10:15:22 | 003,207,106 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1461.JPG
[2011.09.12 10:15:28 | 003,090,943 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1462.JPG
[2011.09.12 10:15:54 | 002,929,624 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1463.JPG
[2011.09.12 10:16:10 | 002,641,962 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1464.JPG
[2011.09.12 10:16:22 | 002,637,990 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1465.JPG
[2011.09.12 10:19:00 | 001,779,181 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1466.JPG
[2011.09.12 10:19:06 | 002,190,361 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1467.JPG
[2011.09.12 10:39:40 | 002,825,916 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1468.JPG
[2011.09.12 10:39:48 | 002,558,342 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1469.JPG
[2011.09.12 10:40:10 | 002,407,973 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1470.JPG
[2011.09.12 10:40:16 | 002,280,588 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1471.JPG
[2011.09.12 12:01:04 | 002,539,057 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1472.JPG
[2011.09.12 12:01:40 | 002,879,183 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1473.JPG
[2011.09.12 12:01:50 | 002,334,310 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1474.JPG
[2011.09.12 12:44:20 | 002,414,126 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1476.JPG
[2011.09.12 12:44:24 | 002,546,030 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1477.JPG
[2011.09.12 12:44:32 | 002,598,690 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1478.JPG
[2011.09.12 12:44:36 | 003,168,317 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1479.JPG
[2011.09.12 12:44:40 | 002,517,632 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1480.JPG
[2011.09.12 12:44:48 | 002,605,799 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1481.JPG
[2011.09.12 12:44:58 | 002,498,021 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1482.JPG
[2011.09.12 12:45:18 | 002,610,287 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1483.JPG
[2011.09.12 12:45:24 | 001,993,293 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1484.JPG
[2011.09.12 12:45:34 | 002,345,589 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1485.JPG
[2011.09.12 12:45:42 | 002,525,479 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1486.JPG
[2011.09.12 12:45:56 | 002,496,954 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1488.JPG
[2011.09.12 14:16:56 | 004,449,652 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1489.JPG
[2011.09.12 14:17:10 | 005,206,660 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1490.JPG
[2011.09.12 14:25:56 | 004,609,007 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1491.JPG
[2011.09.12 14:26:04 | 003,983,945 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1492.JPG
[2011.09.12 14:26:12 | 004,268,594 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1493.JPG
[2011.09.12 14:27:04 | 003,032,723 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1494.JPG
[2011.09.12 15:05:14 | 002,829,968 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1498.JPG
[2011.09.12 15:05:36 | 001,953,369 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1499.JPG
[2011.09.12 15:22:06 | 002,291,907 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1501.JPG
[2011.09.12 15:22:14 | 002,652,898 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1502.JPG
[2011.09.12 15:22:22 | 002,898,098 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1503.JPG
[2011.09.12 15:23:16 | 003,010,582 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1504.JPG
[2011.09.12 15:23:26 | 002,405,186 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1505.JPG
[2011.09.12 15:23:38 | 002,379,274 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1506.JPG
[2011.09.12 15:24:16 | 002,509,592 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1508.JPG
[2011.09.12 15:27:04 | 001,520,316 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1509.JPG
[2011.09.12 15:27:14 | 001,455,848 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1510.JPG
[2011.09.12 17:49:08 | 002,839,205 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1511.JPG
[2011.09.12 17:49:32 | 002,703,516 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1512.JPG
[2011.09.12 17:49:46 | 002,393,837 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1513.JPG
[2011.09.12 17:50:00 | 002,284,612 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1514.JPG
[2011.09.12 17:50:42 | 002,340,920 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1515.JPG
[2011.09.12 17:50:56 | 002,317,089 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1516.JPG
[2011.09.12 17:51:08 | 002,500,500 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1517.JPG
[2011.09.12 17:51:14 | 002,546,744 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1518.JPG
[2011.09.12 17:51:20 | 002,515,542 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1519.JPG
[2011.09.12 17:51:24 | 002,557,679 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1520.JPG
[2011.09.12 17:51:44 | 002,491,608 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1521.JPG
[2011.09.12 17:51:48 | 002,467,273 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1522.JPG
[2011.09.12 17:52:12 | 002,545,498 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1524.JPG
[2011.09.12 17:52:32 | 002,523,220 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1525.JPG
[2011.09.12 17:52:44 | 002,603,921 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1526.JPG
[2011.09.12 17:53:00 | 002,717,711 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1527.JPG
[2011.09.12 17:53:48 | 002,398,481 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1528.JPG
[2011.09.12 17:53:56 | 002,316,035 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1529.JPG
[2011.09.12 17:55:12 | 002,632,931 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1531.JPG
[2011.09.12 17:55:28 | 002,731,834 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1532.JPG
[2011.09.12 17:55:36 | 002,669,554 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1533.JPG
[2011.09.12 17:55:40 | 002,576,344 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1534.JPG
[2011.09.12 17:55:46 | 002,098,227 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1535.JPG
[2011.09.12 18:00:06 | 001,795,523 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1536.JPG
[2011.09.12 18:00:28 | 001,716,397 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1537.JPG
[2011.09.12 18:01:06 | 002,788,603 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1540.JPG
[2011.09.12 18:01:12 | 002,586,190 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1541.JPG
[2011.09.12 18:01:48 | 002,551,938 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1542.JPG
[2011.09.12 18:03:16 | 002,665,525 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1543.JPG
[2011.09.12 18:03:24 | 002,217,247 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1544.JPG
[2011.09.12 18:04:10 | 052,606,304 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1545.AVI
[2011.09.12 18:07:20 | 002,483,086 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1546.JPG
[2011.09.12 18:29:02 | 002,641,350 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1547.JPG
[2011.09.12 18:29:08 | 002,720,654 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1548.JPG
[2011.09.13 04:24:52 | 001,875,925 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1549.JPG
[2011.09.13 04:25:18 | 002,420,620 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1550.JPG
[2011.09.13 04:25:48 | 002,493,514 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1551.JPG
[2011.09.13 04:25:56 | 002,495,106 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1552.JPG
[2011.09.13 04:26:02 | 002,301,316 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1553.JPG
[2011.09.13 04:29:00 | 002,387,310 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1554.JPG
[2011.09.13 06:31:04 | 001,953,095 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1555.JPG
[2011.09.13 07:15:04 | 002,780,858 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1556.JPG
[2011.09.13 07:15:20 | 002,392,275 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1557.JPG
[2011.09.13 08:14:22 | 002,460,911 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1559.JPG
[2011.09.13 08:15:50 | 002,810,192 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1560.JPG
[2011.09.13 08:15:52 | 002,612,335 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1561.JPG
[2011.09.13 08:17:24 | 001,586,417 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1562.JPG
[2011.09.13 08:17:36 | 001,704,050 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1563.JPG
[2011.09.13 08:21:28 | 002,111,432 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1571.JPG
[2011.09.13 08:21:54 | 001,530,357 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1573.JPG
[2011.09.13 09:21:42 | 001,408,613 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1574.JPG
[2011.09.13 09:22:44 | 001,851,795 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1575.JPG
[2011.09.13 09:45:40 | 001,565,727 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1576.JPG
[2011.09.13 09:45:46 | 001,592,415 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1577.JPG
[2011.09.13 09:46:02 | 001,347,618 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1578.JPG
[2011.09.13 09:46:12 | 001,570,050 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1579.JPG
[2011.09.13 09:49:52 | 001,520,608 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1580.JPG
[2011.09.13 09:50:30 | 001,391,172 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1581.JPG
[2011.09.13 09:50:38 | 001,456,393 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1582.JPG
[2011.09.13 09:50:46 | 001,336,777 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1583.JPG
[2011.09.13 09:52:08 | 001,467,884 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1584.JPG
[2011.09.13 09:52:24 | 001,481,124 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\CIMG1585.JPG
[2011.09.17 17:22:34 | 001,700,924 | -HS- | M] () -- C:\Documents and Settings\petr\Plocha\Kreta\Thumbs.db
[2011.11.28 17:50:10 | 001,923,543 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 001.jpg
[2011.11.28 17:50:11 | 001,908,894 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 002.jpg
[2011.11.28 17:50:12 | 001,641,499 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 003.jpg
[2011.11.28 17:50:13 | 002,080,565 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 004.jpg
[2011.11.28 17:50:14 | 001,546,624 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 005.jpg
[2011.11.28 17:50:15 | 001,778,541 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 006.jpg
[2011.11.28 17:50:16 | 002,282,175 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 007.jpg
[2011.11.28 17:50:20 | 002,242,780 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 010.jpg
[2011.11.28 17:50:21 | 001,512,124 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 011.jpg
[2011.11.28 17:50:22 | 002,154,096 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 012.jpg
[2011.11.28 17:50:23 | 002,328,798 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Snímek 013.jpg
[2011.11.28 18:00:44 | 000,039,936 | -HS- | M] () -- C:\Documents and Settings\petr\Plocha\Snímek\Thumbs.db
[2010.11.30 15:32:06 | 000,094,972 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\rel026.jpg
[2011.02.05 20:18:05 | 000,022,016 | -HS- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\Thumbs.db
[2009.11.27 21:08:32 | 000,233,399 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\WoWScrnShot_112709_210830.jpg
[2009.11.28 12:43:52 | 000,333,568 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\WoWScrnShot_112809_124351.jpg
[2009.11.28 19:13:22 | 000,279,041 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\WoWScrnShot_112809_191319.jpg
[2009.12.31 00:30:49 | 000,217,316 | ---- | M] () -- C:\Documents and Settings\petr\Plocha\world of warcraft screenshots(nemazat)\WoWScrnShot_123109_003049.jpg

< %userprofile%\Desktop\*.* /s >

< %ALLUSERSPROFILE%\Plocha\*.* /s >
[2011.08.11 14:48:34 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2011.08.11 12:42:33 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Avira AntiVir Control Center.lnk
[2011.08.11 14:51:08 | 000,001,630 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CDBurnerXP.lnk
[2011.08.11 14:43:38 | 000,001,684 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CyberLink PowerDVD.lnk
[2011.08.29 20:43:36 | 000,000,568 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2011.11.18 11:32:15 | 000,001,757 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Converter.lnk
[2011.11.18 11:32:06 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DivX Plus Player.lnk
[2011.12.17 11:36:35 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2011.08.13 08:18:15 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\McAfee Security Scan Plus.lnk
[2011.08.13 07:03:13 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2011.08.29 21:01:21 | 000,001,822 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Need for Speed™ Most Wanted.lnk
[2011.10.08 14:32:23 | 000,002,279 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero Home Essentials SE.lnk
[2011.10.08 14:32:23 | 000,002,369 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart Essentials.lnk
[2011.09.19 15:44:15 | 000,000,970 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Norton Security Scan.lnk
[2011.10.08 14:32:23 | 000,001,875 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Online aktualizace Nero.lnk
[2011.08.22 21:02:38 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Registry Mechanic.lnk
[2011.10.29 12:32:41 | 000,000,205 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\µTorrent.lnk

< %ALLUSERSPROFILE%\Desktop\*.* /s >

< *crack* /s >
[2011.10.29 12:36:11 | 000,020,598 | ---- | M] () -- \Documents and Settings\petr\Dokumenty\Stažené soubory\GTA_San_Andreas_full_game_pc___with_crack__.3649668.TPB.torrent
[2011.08.22 19:27:35 | 000,004,328 | ---- | M] () -- \zaloha\data1\JDownloader\jd\plugins\hoster\CrackedCom.class
[2005.08.30 14:13:16 | 000,003,556 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Content\Reference\PHP\CrackF.html
[2010.05.15 08:03:13 | 000,900,096 | ---- | M] () -- \zaloha\data2\Nová složka\Mafia\mafia-crack.exe
[2011.07.02 23:07:13 | 000,074,724 | ---- | M] () -- \zaloha\data2\warcraft\Warcraft III\Crack_remove.exe
[2011.07.02 23:06:35 | 001,318,240 | ---- | M] () -- \zaloha\data2\warcraft\Warcraft III\warcraft-3-frozen-throne-crack-1-25-mb.exe

< *keygen* /s >
[2008.05.20 10:27:20 | 000,000,039 | ---- | M] () -- \zaloha\data1\BitLord\Downloads\AVG Antivirus v8.0 Internet Security crack\keygen.dll
[2005.08.30 14:13:12 | 000,013,367 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Content\Reference\HTML\KEYGEN.html

< *loader* /s >
[2011.08.13 19:02:41 | 000,009,767 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.08.16 10:18:40 | 000,010,145 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.6.0.10\ExternalLibraryLoader.jsm
[2011.09.22 08:24:44 | 000,010,144 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.7.0.6\ExternalLibraryLoader.jsm
[2011.10.10 15:58:00 | 000,010,144 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.8.0.8\ExternalLibraryLoader.jsm
[2011.11.28 16:17:08 | 000,010,144 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.8.1.0\ExternalLibraryLoader.jsm
[2011.12.06 05:04:42 | 000,010,144 | ---- | M] () -- \Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\modules\ExternalLibraryLoader.jsm
[2011.07.21 11:12:18 | 000,034,664 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avnetworkloader.dll
[2011.07.21 11:12:18 | 000,343,400 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avnetworkloadergui.dll
[2011.07.21 11:12:30 | 000,214,184 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avwebloader.exe
[4 \Program Files\Avira\AntiVir Desktop\*.tmp files -> \Program Files\Avira\AntiVir Desktop\*.tmp -> ]
[2006.11.09 21:31:32 | 000,163,840 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.09.19 18:07:33 | 000,005,795 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\Packages\atlas\Skins\AtlasSkin\images\XtraPreloader\loader.jpg
[2009.09.19 18:07:33 | 000,004,089 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\Packages\atlas\Skins\AtlasSkin\images\XtraPreloader\loader.swf
[2009.03.01 11:31:26 | 000,005,795 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqApp\ver1\theme\IMAGES\XtraPreloader\loader.jpg
[2009.03.01 11:31:26 | 000,004,089 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqApp\ver1\theme\IMAGES\XtraPreloader\loader.swf
[2009.08.09 10:10:30 | 000,003,479 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqXtraz\ver1\content\contact_list\preloader04.swf
[2010.06.12 10:06:58 | 000,003,479 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqXtraz\ver1\content\coreg\preloader04.swf
[2010.03.26 15:47:34 | 000,003,830 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqXtraz\ver1\content\slide-a-lama\preloader02.swf
[2009.08.08 20:07:15 | 000,003,830 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqXtraz\ver1\content\xicq_admirerx\preloader02.swf
[2009.07.16 08:52:14 | 000,552,798 | ---- | M] () -- \RECYCLER\S-1-5-21-1482476501-682003330-725345543-1004\Dc114.5\services\icqXtraz\ver1\theme\game_center\loaderBkg.png
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2002.12.11 23:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[5 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2002.12.11 23:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
[2011.08.22 19:26:58 | 000,214,528 | ---- | M] () -- \zaloha\data1\JDownloader\JDownloader.exe
[2011.08.22 19:26:58 | 000,593,293 | ---- | M] () -- \zaloha\data1\JDownloader\JDownloader.jar
[2011.08.22 19:26:58 | 000,218,816 | ---- | M] () -- \zaloha\data1\JDownloader\JDownloaderBETA.exe
[2011.08.22 19:26:58 | 000,218,816 | ---- | M] () -- \zaloha\data1\JDownloader\JDownloaderD3D.exe
[2011.08.22 19:30:15 | 000,000,105 | ---- | M] () -- \zaloha\data1\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2011.08.22 19:27:39 | 000,007,069 | ---- | M] () -- \zaloha\data1\JDownloader\jd\plugins\hoster\UploaderPl.class
[2011.08.22 19:27:43 | 000,032,222 | ---- | M] () -- \zaloha\data1\JDownloader\licenses\jdownloader.license
[2009.09.19 19:51:08 | 001,069,712 | ---- | M] () -- \zaloha\data1\World of Warcraft\BackgroundDownloader.exe
[2009.09.19 19:25:32 | 000,003,080 | ---- | M] () -- \zaloha\data1\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(Mac)BlizzardDownloaderProblems.html
[2009.09.19 19:25:32 | 000,004,295 | ---- | M] () -- \zaloha\data1\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(PC)BlizzardDownloaderProblems.html
[2010.06.06 13:08:23 | 000,000,644 | ---- | M] () -- \zaloha\data1\World of Warcraft\Logs\Downloader.log
[2010.09.30 19:04:58 | 002,639,424 | ---- | M] () -- \zaloha\data1\WOTLK WOW\BackgroundDownloader.exe
[2010.09.30 15:54:16 | 002,199,272 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.2.0-enGB-downloader.exe
[2010.09.30 19:05:10 | 002,391,456 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.2.0.10192-to-3.3.0.10958-enGB-downloader.exe
[2010.09.30 19:12:32 | 002,336,112 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.0.10958-to-3.3.0.11159-enGB-downloader.exe
[2010.09.30 19:12:50 | 002,350,144 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.0.11159-to-3.3.2.11403-enGB-downloader.exe
[2010.09.30 19:14:34 | 002,654,392 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.2.11403-to-3.3.3.11685-enGB-downloader.exe
[2010.09.30 19:16:56 | 002,640,192 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.3.11685-to-3.3.3.11723-enGB-downloader.exe
[2010.09.30 19:18:32 | 002,711,048 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.3.11723-to-3.3.5.12213-enGB-downloader.exe
[2010.09.30 19:21:58 | 002,710,448 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-3.3.5.12213-to-3.3.5.12340-enGB-downloader.exe
[2002.06.11 15:22:15 | 002,070,207 | ---- | M] () -- \zaloha\data1\WOTLK WOW\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2010.09.30 17:48:20 | 000,003,026 | ---- | M] () -- \zaloha\data1\WOTLK WOW\Data\enGB\Documentation\Troubleshooting\(Mac)BlizzardDownloaderProblems.html
[2010.09.30 17:48:20 | 000,004,261 | ---- | M] () -- \zaloha\data1\WOTLK WOW\Data\enGB\Documentation\Troubleshooting\(PC)BlizzardDownloaderProblems.html
[2002.06.11 15:22:27 | 000,037,945 | ---- | M] () -- \zaloha\data1\WOTLK WOW\Logs\Downloader.log
[2005.06.14 23:29:40 | 000,169,384 | ---- | M] () -- \zaloha\data2\Counter-Strike\cstrike\models\qloader.mdl
[2005.06.14 23:35:30 | 000,352,548 | ---- | M] () -- \zaloha\data2\Counter-Strike\valve\models\loader.mdl
[2005.06.14 23:35:40 | 000,012,764 | ---- | M] () -- \zaloha\data2\Counter-Strike\valve\sound\ambience\loader_hydra1.wav
[2005.06.14 23:35:40 | 000,012,164 | ---- | M] () -- \zaloha\data2\Counter-Strike\valve\sound\ambience\loader_step1.wav
[2005.08.30 14:12:58 | 000,056,807 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Commands\FLVFileLoader.swf
[2005.08.30 14:13:18 | 000,000,681 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Content\Welcome\Flash\dynswfloader.swf
[2005.08.30 14:13:18 | 000,008,203 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Content\Welcome\Flash\testing_dynswfloader.swf
[2005.08.30 14:13:30 | 001,040,384 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\JSExtensions\swfloader.dll
[2005.06.14 23:29:40 | 000,169,384 | ---- | M] () -- \zaloha\data2\Nová složka\Counter-Strike\cstrike\models\qloader.mdl
[2005.06.14 23:35:30 | 000,352,548 | ---- | M] () -- \zaloha\data2\Nová složka\Counter-Strike\valve\models\loader.mdl
[2005.06.14 23:35:40 | 000,012,764 | ---- | M] () -- \zaloha\data2\Nová složka\Counter-Strike\valve\sound\ambience\loader_hydra1.wav
[2005.06.14 23:35:40 | 000,012,164 | ---- | M] () -- \zaloha\data2\Nová složka\Counter-Strike\valve\sound\ambience\loader_step1.wav
[2005.06.14 23:29:40 | 000,169,384 | ---- | M] () -- \zaloha\data2\Nová složka\cstrike\models\qloader.mdl
[2005.06.14 23:35:30 | 000,352,548 | ---- | M] () -- \zaloha\data2\Nová složka\valve\models\loader.mdl
[2005.06.14 23:35:40 | 000,012,764 | ---- | M] () -- \zaloha\data2\Nová složka\valve\sound\ambience\loader_hydra1.wav
[2005.06.14 23:35:40 | 000,012,164 | ---- | M] () -- \zaloha\data2\Nová složka\valve\sound\ambience\loader_step1.wav

< *minodlogin* /s >

< *tnod* /s >
[2005.08.30 14:13:16 | 000,000,631 | ---- | M] () -- \zaloha\data2\Dreamweaver 8\Configuration\Content\Reference\JavaScript\TextNode.html

< *AutoKMS* /s >

< *KMSEmulator* /s >

< *activator* /s >

< *serial* /s >
[2011.08.11 14:25:45 | 000,000,418 | ---- | M] () -- \Documents and Settings\petr\Cookies\petr@serialkeys.svetu[2].txt
[2010.04.07 22:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.18 13:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.10.13 08:07:42 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.08.14 21:17:24 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.14 10:51:16 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.14 10:49:58 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2008.07.25 10:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 22:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 06:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[5 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
[2010.12.22 09:52:46 | 000,009,066 | ---- | M] () -- \zaloha\data1\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010.12.22 09:52:46 | 000,000,219 | ---- | M] () -- \zaloha\data1\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2010.12.22 09:52:46 | 000,009,066 | ---- | M] () -- \zaloha\data1\WOTLK WOW\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010.12.22 09:52:46 | 000,000,219 | ---- | M] () -- \zaloha\data1\WOTLK WOW\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2010.03.16 15:30:08 | 000,000,104 | ---- | M] () -- \zaloha\data2\Need for Speed Underground 2\nfsu2 serials.txt

< *w7lxe* /s >

< *AutoRearm* /s >

< >

< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"avgnt" = "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min -- [2011.04.21 06:53:33 | 000,281,768 | ---- | M] (Avira GmbH)
"RTHDCPL" = RTHDCPL.EXE -- [2011.08.11 12:30:43 | 020,053,608 | ---- | M] (Realtek Semiconductor Corp.)
"NvCplDaemon" = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup -- [2008.04.14 07:52:44 | 000,033,280 | ---- | M] (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
"" =
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed" = 1
"" =
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"Installed" = 1
"NoChange" = 1
"" =
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed" = 1
"" =

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Advanced SystemCare 5" = "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /Manual -- [2011.12.22 13:01:44 | 000,619,352 | ---- | M] (IObit)

< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >

< >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.12.24 13:23:35 | 000,000,512 | ---- | M] () MD5=0336BBB60222492C782FAEB972C91195 -- C:\PhysicalMBR.bin

========== Files - Unicode (All) ==========
[2011.08.13 22:08:34 | 000,000,000 | ---- | M] ()(C:\Program Files\Common Files\Div????ared) -- C:\Program Files\Common Files\Div����ared
[2011.08.13 22:08:24 | 000,000,000 | ---- | C] ()(C:\Program Files\Common Files\Div????ared) -- C:\Program Files\Common Files\Div����ared

========== Alternate Data Streams ==========

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

< End of report >

Tak tady to je doufam ze ted jsem to vlozila v poradku

Jo, teď je to v pořádku, Veru.

A potvrzuji, stahuje. Dej mu za uši. Hlavně jako keygen na antivir AVG se mu u nás krutě nevyplatí! A warn bys dostala Ty, protože to tu je přes Tvůj nick, tak si na to dávej pozor, prosím.

Verunko, vyčisti bráchovi Plochu! Má tam strašně moc souborů a blbostí. Velikost jeho adresáře C:\Documents and Settings\petr\Plocha by měla být maximálně tak 300 MB, on tám má doslova tuny MP3 a obrázků! Tohle dost drasticky zpomaluje chod systému. Vyházej mu to všechno někam na jinou část disku a na Ploše ať má jen zástupce!

A moc zlobíš, Veru... v prvním logu nebylo nainstalováno Advanced SystemCare 5 od IOBit... kterej "dobrák" to tam akčně nainstaloval?! Hele, takhle to nepůjde... jestli si to chcete dělat sami, tak klidně. Takhle se nedá spolupracovat.
Advanced SystemCare 5 a následně i vše od IObit zase svižně odinstaluj. Jsou to čínské programy, které hledají nesmyslné a neexistující problémy. Tvůrci software ukradli databázi havěti jiné renomované společnosti a účinek na PC je spíše nulový až negativní.

Dobrej den,

Dekuju moc, ten keygen jsem mu hned vycetla a to s tim iobit atd. to tam nainstaloval nakej technik kterej mu vytahl stary harddisk z pc kterej tam delal neplechu... tak jsem to vse vymazala a pc je ted dobrej.

Dekuji moc za pomoc, ted uz by to melo byt ok

PS: bratra jsem poucila

OK, Veru, tak pak je to v pořádku. Bratrovi dej pořádně za uši, kazí Ti reputaci. ...

Následující soubory otestuj na stránkách VirusTotal.

• C:\WINDOWS\System32\RegistryDefragBootTime.exe
  C:\WINDOWS\System32\CleanMFT32.exe
• Klikni na Procházet.
• Soubor nehledej, jen vlož cestu souboru, který chci otestovat.
• Klikni na Send File.
• Pokud na Tebe vyskočí obrazovka jako je níže, klikni na Reanalyse.
  
• Výsledek analýzy mi sem vlož (jako odkaz).

Znovu spusť OTL.

• Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
• Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
• Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

• Klikni na tlačítko [Opravit].
• Po dokončení skenu se objeví log, ten mi sem vlož.
• Pokud se log nevejde do jednoho příspěvku, rozděl jej na více částí.

Tak tady je ta analyza

Antivirus Version Last update Result

AhnLab-V3 2012.01.03.00 2012.01.03 -

AntiVir 7.11.20.158 2012.01.04 -

Antiy-AVL 2.0.3.7 2012.01.04 -

Avast 6.0.1289.0 2012.01.04 -

AVG 10.0.0.1190 2012.01.04 -

BitDefender 7.2 2012.01.04 -

ByteHero 1.0.0.1 2011.12.31 -

CAT-QuickHeal 12.00 2012.01.04 -

ClamAV 0.97.3.0 2012.01.04 -

Commtouch 5.3.2.6 2012.01.04 -

Comodo 11194 2012.01.04 -

DrWeb 5.0.2.03300 2012.01.04 -

Emsisoft 5.1.0.11 2012.01.04 -

eSafe 7.0.17.0 2012.01.03 -

eTrust-Vet 37.0.9663 2012.01.04 -

F-Prot 4.6.5.141 2012.01.03 -

F-Secure 9.0.16440.0 2012.01.04 -

Fortinet 4.3.388.0 2012.01.04 -

GData 22.331/22.624 2012.01.04 -

Ikarus T3.1.1.109.0 2011.12.31 -

Jiangmin 13.0.900 2012.01.04 -

K7AntiVirus 9.123.5849 2012.01.03 -

Kaspersky 9.0.0.837 2012.01.04 -

McAfee 5.400.0.1158 2012.01.04 -

McAfee-GW-Edition 2010.1E 2012.01.04 -

Microsoft 1.7903 2012.01.04 -

NOD32 6767 2012.01.04 -

Norman 6.07.13 2012.01.03 -

nProtect 2012-01-04.01 2012.01.04 -

Panda 10.0.3.5 2012.01.04 -

PCTools 8.0.0.5 2012.01.04 -

Prevx 3.0 2012.01.04 -

Rising 23.91.02.01 2012.01.04 -

Sophos 4.72.0 2012.01.04 -

SUPERAntiSpyware 4.40.0.1006 2012.01.04 -

Symantec 20111.2.0.82 2012.01.04 -

TheHacker 6.7.0.1.371 2012.01.03 -

TrendMicro 9.500.0.1008 2012.01.04 -

TrendMicro-HouseCall 9.500.0.1008 2012.01.04 -

VBA32 3.12.16.4 2012.01.04 -

VIPRE 11348 2012.01.04 -

ViRobot 2012.1.4.4863 2012.01.04 -

VirusBuster 14.1.149.0 2012.01.04 -

MD5: 79fd5b337652f17e46ea498dae6a6cff

SHA1: d3cf3e9eecb77b29c9aa64a4f4dd074e4e160218

SHA256: 9ae251a566de055c7bd929d9787f1734db4aba3a6d79f2ea976109dda30cbbae

File size: 20312 bytes

Scan date: 2012-01-04 15:55:11 (UTC)

a tady je OTL

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 205508 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes

User: petr
->Temp folder emptied: 2138867727 bytes
->Temporary Internet Files folder emptied: 10257505 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 211686256 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 9102 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 4268306 bytes
%systemroot%\System32 .tmp files removed: 3613640 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 393696 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 104255828 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 33424915 bytes

Total Files Cleaned = 2 391,00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: petr
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service NMIndexingService stopped successfully!
Service NMIndexingService deleted successfully!
========== OTL ==========
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
Error: No service named AdvancedSystemCareService5 was found to stop!
Service\Driver key AdvancedSystemCareService5 not found.
File C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe not found.
Service McComponentHostService stopped successfully!
Service McComponentHostService deleted successfully!
C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe moved successfully.
Prefs.js: "Search the web (Babylon)" removed from browser.search.defaultenginename
Prefs.js: "Bitlord 1.2 Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "http://search.conduit.com/ResultsExt.as ... earchTerms}" removed from browser.search.defaulturl
Prefs.js: "Search the web (Babylon)" removed from browser.search.selectedEngine
Prefs.js: "http://search.conduit.com/ResultsExt.as ... 2830765&q=" removed from keyword.URL
Folder C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ not found.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
Folder C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\extensions\ffxtlbr@babylon.com\ not found.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\conduit.xml moved successfully.
C:\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\searchplugins\daemon-search.xml moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
File C:\Program Files\mozilla firefox\searchplugins\babylon.xml not found.
Registry value HKEY_USERS\S-1-5-21-1482476501-682003330-725345543-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-21-1482476501-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 5 not found.
File C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe not found.
C:\WINDOWS\AppPatch\SET11D.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET11E.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET11F.tmp deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP12F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP159.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1DC.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP226.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP237.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP304.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP40F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP523.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF7.tmp folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\system folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\sysbckup folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\inf folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\help folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\drivers folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\directx folder deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2005_d3dx9_25_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2006_d3dx9_30_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2006_mdx1_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2006_mdx1_x86_archive.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2007_d3dx10_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2007_d3dx9_33_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\apr2007_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2005_d3dx9_27_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2006_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2007_d3dx10_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2007_d3dx9_35_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\aug2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Aug2008_d3dx10_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Aug2008_d3dx9_39_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Aug2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Aug2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_D3DCompiler_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_d3dcsx_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_d3dx10_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_d3dx11_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_d3dx9_42_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\AUG2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\d3dx9_24.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\d3dx9_24_w9x.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\d3dx9_24_x86.cat deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\d3dx9_24_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dec2005_d3dx9_28_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dec2006_d3dx10_00_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dec2006_d3dx9_32_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dec2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dxdllreg.exe deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dxdllreg_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dxupdate.cif deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dxupdate.dll deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\dxupdate.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\feb2006_d3dx9_29_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\feb2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\feb2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\FEB2010_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\FEB2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\FEB2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\jun2005_d3dx9_26_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\jun2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\jun2007_d3dx10_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\jun2007_d3dx9_34_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\jun2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Jun2008_d3dx10_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Jun2008_d3dx9_38_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Jun2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Jun2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Jun2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_D3DCompiler_43_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_d3dcsx_43_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_d3dx10_43_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_d3dx11_43_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_d3dx9_43_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\JUN2010_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2008_d3dx10_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2008_d3dx9_37_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2009_d3dx10_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2009_d3dx9_41_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2009_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2009_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Mar2009_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\nov2007_d3dx10_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\nov2007_d3dx9_36_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\nov2007_x3daudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\nov2007_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Nov2008_d3dx10_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Nov2008_d3dx9_40_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Nov2008_X3DAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Nov2008_XACT_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\Nov2008_XAudio_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\oct2005_xinput_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\oct2006_d3dx9_31_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp\oct2006_xact_x86.inf deleted successfully.
C:\WINDOWS\system32\DirectX\DX1E3.tmp folder deleted successfully.
\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm moved successfully.
\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.6.0.10\ExternalLibraryLoader.jsm moved successfully.
\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.7.0.6\ExternalLibraryLoader.jsm moved successfully.
\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.8.0.8\ExternalLibraryLoader.jsm moved successfully.
\Documents and Settings\petr\Data aplikací\Mozilla\Firefox\Profiles\mec85gsa.default\conduitCommon\modules\3.8.1.0\ExternalLibraryLoader.jsm moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
========== FILES ==========
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\Tasks\Norton Security Scan for petr.job moved successfully.
C:\WINDOWS\Tasks\RMSchedule.job moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Babylon folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\Babylon folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\BabylonToolbar folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\IObit Uninstaller\Log folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\IObit Uninstaller folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\Advanced SystemCare V5\Toolbox folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\Advanced SystemCare V5\Log folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\Advanced SystemCare V5\Boottime folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\Advanced SystemCare V5\Backup folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\petr\Data aplikací\IObit folder moved successfully.
File\Folder C:\Documents and Settings\All Users\Nabídka Start\Programy\Advanced SystemCare 5 not found.
File\Folder C:\Documents and Settings\petr\Dokumenty\Stažené soubory\GTA_San_Andreas_full_game_pc___with_crack__.3649668.TPB.torrent not found.
C:\zaloha\data2\warcraft\Warcraft III\warcraft-3-frozen-throne-crack-1-25-mb.exe deleted successfully.
File\Folder C:\zaloha\data2\Dreamweaver 8\Configuration\Content\Reference\HTML\KEYGEN.html not found.
C:\Documents and Settings\petr\Cookies\petr@serialkeys.svetu[2].txt deleted successfully.
C:\zaloha\data2\Need for Speed Underground 2\nfsu2 serials.txt deleted successfully.
C:\zaloha\data2\warcraft\Warcraft III\Crack_remove.exe deleted successfully.
File\Folder C:\zaloha\data2\Nová složka\Mafia not found.
File\Folder C:\Program Files\IObit not found.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS\\ deleted successfully.

OTL by OldTimer - Version 3.2.31.0 log created on 01042012_170811

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...