VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu (zpomalené PC)

https://forum.viry.cz:443/viewtopic.php?t=121119

Stránka 1 z 2

Prosím o kontrolu (zpomalené PC)

Napsal: 16 dub 2012 20:42
od Durman
Logfile of random's system information tool 1.09 (written by random/random)
Run by durman at 2012-04-16 21:40:10
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 383 GB (53%) free of 715 GB
Total RAM: 3327 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:40:30, on 16.4.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\durman\Plocha\RSIT.exe
C:\Program Files\trend micro\durman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [RTBatteryMeter] C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo R200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE /P30 "EPSON Stylus Photo R200 Series" /O6 "USB001" /M "Stylus Photo R200"
O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [eTrustPPAP] "C:\Program Files\CA\eTrust PestPatrol\PPActiveDetection.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: Logitech . Registrace produktu.lnk = C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Logitech . Registrace produktu.lnk = C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe (User 'Default user')
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: ZoneAlarm LTD Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe

--
End of file - 14034 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10, {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.11, jqs@sun.com:1.0, noia2_option@kk.noia:3.76, {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.63, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.9, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3, {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.19, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.7, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, DeviceDetection@logitech.com:1.23.0.5, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, foxyproxy@eric.h.jung:3.5, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {ea614400-e918-4741-9a97-7a972ff7c30b}:2.4.3, {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28, {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76, {7b90e860-5d61-11e0-80e3-0800200c9a66}:1.4.6"
prefs.js - "keyword.URL" - "http://start.facemoods.com/results.php?f=5&a=desktop&q="

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{FFB96CC1-7EB3-449D-B827-DB661701C6BB}"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@gamersfirst.com/LiveLauncher]
"Description"=GamersFirst LIVE! Web Launcher
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571]
"Description"=RealMedia Plugin
"Path"=C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739]
"Description"=RealPlayer Version Plugin
"Path"=C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npBitCometAgent.dll
npdeployJava1.dll
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
np_gp.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
fcmdSrchdesktop.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\
DeviceDetection@logitech.com
foxyproxy@eric.h.jung
noia2_option@kk.noia
staged
{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll [2010-01-28 671480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-12 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Security Engine Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2012-03-16 599680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-12 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-03-12 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440}
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2012-03-16 599680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-12-20 16860672]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-07-01 1447168]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2007-09-14 2595480]
"AcronisTimounterMonitor"=C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [2007-09-14 905056]
"Acronis Scheduler2 Service"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2007-09-14 140568]
"RTBatteryMeter"=C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe [2003-01-16 49152]
"EPSON Stylus Photo R200 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE [2003-09-11 99840]
"MaxMenuMgr"=C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [2009-09-25 185640]
"eTrustPPAP"=C:\Program Files\CA\eTrust PestPatrol\PPActiveDetection.exe [2010-04-24 131072]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-01-07 111208]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-01-07 13880424]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 153672]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2012-03-19 73360]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"HTC Sync Loader"=C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-12-20 634880]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2012-03-16 738944]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2011-10-07 1387288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"Seznam Postak"=C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe [2011-05-25 491040]
"Advanced SystemCare 5"=C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [2012-03-06 574296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader]
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-12-20 634880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamersFirst LIVE!.lnk]
C:\PROGRA~1\GAMERS~1\LIVE!\Live.exe [2011-08-16 2589808]

C:\Documents and Settings\durman\Nabídka Start\Programy\Po spuštění
Logitech . Registrace produktu.lnk - C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\HRY\Prototype\prototypef.exe"="C:\HRY\Prototype\prototypef.exe:*:Enabled:Prototype(TM)"
"C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe"="C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe:*:Enabled:Landwirtschafts Simulator 2011"
"C:\HRY\Landwirtschafts Simulator 2011\game.exe"="C:\HRY\Landwirtschafts Simulator 2011\game.exe:*:Enabled:Landwirtschafts Simulator 2011"
"C:\HRY\Battlefield_2\BFBC2Updater.exe"="C:\HRY\Battlefield_2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\HRY\EA GAMES\Battlefield 2\BF2.exe"="C:\HRY\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe"="C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe:*:Enabled:Dead Rising 2: OTR"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\HRY\APB Reloaded\Binaries\APB.exe"="C:\HRY\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe"
"C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe"="C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.wmv3"=C:\PROGRA~1\COMBIN~1\Filters\wmv9vcm.dll
"vidc.tscc"=C:\PROGRA~1\MpcStar\Codecs\tscc\tsccvid.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2012-04-16 21:40:10 ----D---- C:\rsit
2012-04-16 21:40:10 ----D---- C:\Program Files\trend micro
2012-03-27 00:43:54 ----A---- C:\WINDOWS\system32\zonealarm.txt
2012-03-27 00:43:04 ----A---- C:\WINDOWS\system32\XceedCry.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\zlib1.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\sqlite3.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\LogMail.dll
2012-03-19 19:32:02 ----A---- C:\WINDOWS\system32\vsdatant.sys

======List of files/folders modified in the last 1 month======

2012-04-16 21:40:16 ----D---- C:\WINDOWS\Temp
2012-04-16 21:40:10 ----RD---- C:\Program Files
2012-04-16 21:21:24 ----D---- C:\WINDOWS\system32\CatRoot2
2012-04-16 21:18:32 ----A---- C:\RTHDCPL_Dump.txt
2012-04-16 21:18:19 ----D---- C:\WINDOWS
2012-04-16 21:17:27 ----D---- C:\WINDOWS\system32\config
2012-04-16 21:15:55 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-04-16 21:11:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-04-16 21:11:48 ----A---- C:\WINDOWS\NeroDigital.ini
2012-04-16 21:11:45 ----RD---- C:\DVD FILMY
2012-04-16 20:46:01 ----D---- C:\WINDOWS\Internet Logs
2012-04-16 17:06:29 ----D---- C:\WINDOWS\Debug
2012-04-16 17:06:27 ----D---- C:\Documents and Settings\durman\Data aplikací\Skype
2012-04-16 17:06:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-04-16 16:04:46 ----D---- C:\Documents and Settings\durman\Data aplikací\IObit
2012-04-16 16:04:21 ----D---- C:\Program Files\IObit
2012-04-16 16:04:18 ----SD---- C:\WINDOWS\Tasks
2012-04-16 15:41:37 ----SHD---- C:\WINDOWS\Installer
2012-04-16 15:41:24 ----D---- C:\Program Files\Common Files\Logishrd
2012-04-16 15:41:23 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-04-16 15:41:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-04-16 15:41:16 ----D---- C:\WINDOWS\system32
2012-04-16 15:41:15 ----D---- C:\WINDOWS\system32\drivers
2012-04-16 15:41:00 ----HD---- C:\WINDOWS\inf
2012-04-16 15:40:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\LogiShrd
2012-04-16 15:40:25 ----D---- C:\Program Files\Logitech
2012-04-16 00:05:09 ----D---- C:\Program Files\SpeedFan
2012-04-16 00:04:01 ----D---- C:\Documents and Settings\durman\Data aplikací\vlc
2012-04-15 21:07:59 ----D---- C:\Program Files\JDownloader
2012-04-10 01:19:39 ----D---- C:\Program Files\Mozilla Firefox
2012-04-03 01:01:27 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-04-03 01:01:17 ----D---- C:\Program Files\SpywareBlaster
2012-04-03 00:47:08 ----D---- C:\WINDOWS\system32\drivers\etc
2012-03-26 23:32:22 ----D---- C:\Documents and Settings\durman\Data aplikací\CheckPoint
2012-03-22 21:07:12 ----D---- C:\Documents and Settings\durman\Data aplikací\Dropbox
2012-03-20 23:00:58 ----D---- C:\Documents and Settings\durman\Data aplikací\Outlook
2012-03-20 22:58:32 ----D---- C:\Documents and Settings\durman\Data aplikací\HTC
2012-03-20 22:41:07 ----D---- C:\Program Files\Common Files\Adobe AIR

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2006-03-01 51200]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-02-14 6656]
R0 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\System32\drivers\sfsync04.sys [2006-02-21 49664]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2009-01-28 129248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-03-13 611064]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2009-01-28 368736]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2009-01-28 441760]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-07-01 53256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-07-01 34312]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R1 Vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2012-03-19 525840]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2008-07-01 39944]
R2 ISWKL;ZoneAlarm LTD Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 LBeepKE;Logitech Beep Suppression Driver; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2011-09-02 12184]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R2 PfFilter;PfFilter; \??\C:\Program Files\IObit\Protected Folder\pffilter.sys []
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2009-01-28 44384]
R3 adatadrv;Autodata Protection Service; C:\WINDOWS\system32\DRIVERS\adatadrv.sys [2009-07-01 762112]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2007-11-07 12928]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-12-20 4637696]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2011-09-02 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2011-09-02 39192]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-01-08 9888672]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2007-10-12 13312]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-12-05 104064]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-01-19 503144]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2010-04-27 22856]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2010-04-27 37704]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2010-04-27 66632]
S0 srescan;srescan; C:\WINDOWS\system32\ZoneLabs\srescan.sys []
S3 afjbpi15;afjbpi15; C:\WINDOWS\system32\drivers\afjbpi15.sys []
S3 ALSysIO;ALSysIO; \??\C:\DOCUME~1\durman\LOCALS~1\Temp\ALSysIO.sys []
S3 BRIDGE;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 HTCAND32;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-06-10 24576]
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2010-06-22 21248]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2010-11-12 100456]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-07-30 47360]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2008-07-11 37088]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2010-08-20 26112]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2010-04-27 15048]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2007-09-14 427288]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe [2012-03-14 913752]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-07-01 468224]
R2 FreeAgentGoNext Service;Seagate Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-09-25 189736]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2011-10-08 820568]
R2 IswSvc;ZoneAlarm LTD Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2012-03-16 497280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2012-03-12 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-01-07 156776]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2011-09-15 88576]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-01-12 75136]
R2 TryAndDecideService;Acronis Try And Decide Service; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [2007-09-14 492600]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2012-03-19 2421640]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-22 136176]
S2 NOD32FiXTemDono;Eset Nod32 Boot; C:\WINDOWS\system32\regedt32.exe [2001-10-25 3584]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-07-01 19200]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-22 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 295192]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 16 dub 2012 21:02
od vyosek
Zdravim a pekny vecer preji :)

:arrow: Co udelame s tim nelegalnim NOD32? Pravidla fora hovori jasne ohledne pomoci pokud je v PC nelegalni bezp. SW

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 16 dub 2012 21:30
od Durman
hups :oops: to mi tam daval kamarad co mi stavel PC
NODa mam rad a nerad bych bral neco jinyho (rozhodne ne Avast)

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 16 dub 2012 21:36
od vyosek
Nechcete menit, nemusite, nikdo vas nenuti...Ale ja se musim drzet pravidel fora a ty jsou dana jasne a strikntne...

Pokud chcete pomoci na nasem foru, odinstalujte nelegalni NOD a dejte free reseni - pokud nechcete Avast, muzete zkusit anglickou Aviru ci cesky MSE...

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 16 dub 2012 21:42
od Durman
ok dam ho teda pryc, ale vzhledem k tomu ze je uz pozde a se skusenosti jak to trva dlouho ho dostat z pc, to udelam zitra a ozvu se.

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 17 dub 2012 11:48
od vyosek
Ok, az budete mit PC dle pravidel fora tak poprosim o novy log z RSIT

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 15:04
od Durman
zdravicko, tak Eseta sem odinstaloval, ale fix tam porad sviti.
(zvolil jsem Aviru, tak snad to nebude nejakej smejd...)
____________________________________________________

Logfile of random's system information tool 1.09 (written by random/random)
Run by durman at 2012-04-18 16:02:38
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 382 GB (53%) free of 715 GB
Total RAM: 3327 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:02:55, on 18.4.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\durman\Plocha\RSIT.exe
C:\Program Files\trend micro\durman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [RTBatteryMeter] C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo R200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE /P30 "EPSON Stylus Photo R200 Series" /O6 "USB001" /M "Stylus Photo R200"
O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [eTrustPPAP] "C:\Program Files\CA\eTrust PestPatrol\PPActiveDetection.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: ZoneAlarm LTD Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe

--
End of file - 13596 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10, {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.11, jqs@sun.com:1.0, noia2_option@kk.noia:3.76, {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.63, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.9, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3, {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.19, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.7, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, DeviceDetection@logitech.com:1.23.0.5, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, foxyproxy@eric.h.jung:3.5, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {ea614400-e918-4741-9a97-7a972ff7c30b}:2.4.3, {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28, {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76, {7b90e860-5d61-11e0-80e3-0800200c9a66}:1.4.6"
prefs.js - "keyword.URL" - "http://start.facemoods.com/results.php?f=5&a=desktop&q="

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{FFB96CC1-7EB3-449D-B827-DB661701C6BB}"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@gamersfirst.com/LiveLauncher]
"Description"=GamersFirst LIVE! Web Launcher
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571]
"Description"=RealMedia Plugin
"Path"=C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739]
"Description"=RealPlayer Version Plugin
"Path"=C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npBitCometAgent.dll
npdeployJava1.dll
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
np_gp.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
fcmdSrchdesktop.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\
DeviceDetection@logitech.com
foxyproxy@eric.h.jung
noia2_option@kk.noia
{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll [2010-01-28 671480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-12 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Security Engine Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2012-03-16 599680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-12 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-03-12 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440}
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2012-03-16 599680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-12-20 16860672]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2007-09-14 2595480]
"AcronisTimounterMonitor"=C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [2007-09-14 905056]
"Acronis Scheduler2 Service"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2007-09-14 140568]
"RTBatteryMeter"=C:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe [2003-01-16 49152]
"EPSON Stylus Photo R200 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE [2003-09-11 99840]
"MaxMenuMgr"=C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [2009-09-25 185640]
"eTrustPPAP"=C:\Program Files\CA\eTrust PestPatrol\PPActiveDetection.exe [2010-04-24 131072]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-01-07 111208]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-01-07 13880424]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 153672]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2012-03-19 73360]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"HTC Sync Loader"=C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-12-20 634880]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2012-03-16 738944]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2011-10-07 1387288]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-01-31 258512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"Seznam Postak"=C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe [2011-05-25 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader]
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-12-20 634880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamersFirst LIVE!.lnk]
C:\PROGRA~1\GAMERS~1\LIVE!\Live.exe [2011-08-16 2589808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\HRY\Prototype\prototypef.exe"="C:\HRY\Prototype\prototypef.exe:*:Enabled:Prototype(TM)"
"C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe"="C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe:*:Enabled:Landwirtschafts Simulator 2011"
"C:\HRY\Landwirtschafts Simulator 2011\game.exe"="C:\HRY\Landwirtschafts Simulator 2011\game.exe:*:Enabled:Landwirtschafts Simulator 2011"
"C:\HRY\Battlefield_2\BFBC2Updater.exe"="C:\HRY\Battlefield_2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\HRY\EA GAMES\Battlefield 2\BF2.exe"="C:\HRY\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe"="C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe:*:Enabled:Dead Rising 2: OTR"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\HRY\APB Reloaded\Binaries\APB.exe"="C:\HRY\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe"
"C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe"="C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.wmv3"=C:\PROGRA~1\COMBIN~1\Filters\wmv9vcm.dll
"vidc.tscc"=C:\PROGRA~1\MpcStar\Codecs\tscc\tsccvid.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2012-04-18 15:58:01 ----D---- C:\Documents and Settings\durman\Data aplikací\Avira
2012-04-17 18:08:00 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2012-04-17 18:07:58 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2012-04-17 18:07:58 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2012-04-17 18:07:57 ----D---- C:\Program Files\Avira
2012-04-17 18:07:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2012-04-17 18:07:57 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2012-04-16 21:40:10 ----D---- C:\rsit
2012-04-16 21:40:10 ----D---- C:\Program Files\trend micro
2012-03-27 00:43:54 ----A---- C:\WINDOWS\system32\zonealarm.txt
2012-03-27 00:43:04 ----A---- C:\WINDOWS\system32\XceedCry.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\zlib1.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\sqlite3.dll
2012-03-27 00:42:58 ----A---- C:\WINDOWS\system32\LogMail.dll
2012-03-19 19:32:02 ----A---- C:\WINDOWS\system32\vsdatant.sys

======List of files/folders modified in the last 1 month======

2012-04-18 16:02:55 ----D---- C:\WINDOWS\Temp
2012-04-18 15:54:03 ----D---- C:\WINDOWS\system32\CatRoot2
2012-04-18 15:52:47 ----D---- C:\WINDOWS\Internet Logs
2012-04-18 15:52:29 ----A---- C:\RTHDCPL_Dump.txt
2012-04-18 15:52:16 ----D---- C:\WINDOWS
2012-04-17 18:16:31 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-04-17 18:14:14 ----SHD---- C:\WINDOWS\Installer
2012-04-17 18:13:53 ----D---- C:\WINDOWS\system32\drivers
2012-04-17 18:07:57 ----RD---- C:\Program Files
2012-04-17 17:33:37 ----D---- C:\Program Files\SpeedFan
2012-04-16 21:17:27 ----D---- C:\WINDOWS\system32\config
2012-04-16 21:11:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-04-16 21:11:48 ----A---- C:\WINDOWS\NeroDigital.ini
2012-04-16 21:11:45 ----RD---- C:\DVD FILMY
2012-04-16 17:06:29 ----D---- C:\WINDOWS\Debug
2012-04-16 17:06:27 ----D---- C:\Documents and Settings\durman\Data aplikací\Skype
2012-04-16 17:06:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-04-16 16:04:46 ----D---- C:\Documents and Settings\durman\Data aplikací\IObit
2012-04-16 16:04:21 ----D---- C:\Program Files\IObit
2012-04-16 16:04:18 ----SD---- C:\WINDOWS\Tasks
2012-04-16 15:41:24 ----D---- C:\Program Files\Common Files\Logishrd
2012-04-16 15:41:23 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-04-16 15:41:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-04-16 15:41:16 ----D---- C:\WINDOWS\system32
2012-04-16 15:41:00 ----HD---- C:\WINDOWS\inf
2012-04-16 15:40:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\LogiShrd
2012-04-16 15:40:25 ----D---- C:\Program Files\Logitech
2012-04-16 00:04:01 ----D---- C:\Documents and Settings\durman\Data aplikací\vlc
2012-04-15 21:07:59 ----D---- C:\Program Files\JDownloader
2012-04-10 01:19:39 ----D---- C:\Program Files\Mozilla Firefox
2012-04-03 01:01:27 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-04-03 01:01:17 ----D---- C:\Program Files\SpywareBlaster
2012-04-03 00:47:08 ----D---- C:\WINDOWS\system32\drivers\etc
2012-03-26 23:32:22 ----D---- C:\Documents and Settings\durman\Data aplikací\CheckPoint
2012-03-22 21:07:12 ----D---- C:\Documents and Settings\durman\Data aplikací\Dropbox
2012-03-20 23:00:58 ----D---- C:\Documents and Settings\durman\Data aplikací\Outlook
2012-03-20 22:58:32 ----D---- C:\Documents and Settings\durman\Data aplikací\HTC
2012-03-20 22:41:07 ----D---- C:\Program Files\Common Files\Adobe AIR

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2006-03-01 51200]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-02-14 6656]
R0 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\System32\drivers\sfsync04.sys [2006-02-21 49664]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2009-01-28 129248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-03-13 611064]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2009-01-28 368736]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2009-01-28 441760]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2012-01-31 137416]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2011-09-16 36000]
R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 Vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2012-03-19 525840]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2012-01-31 74640]
R2 ISWKL;ZoneAlarm LTD Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 LBeepKE;Logitech Beep Suppression Driver; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2011-09-02 12184]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R2 PfFilter;PfFilter; \??\C:\Program Files\IObit\Protected Folder\pffilter.sys []
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2009-01-28 44384]
R3 adatadrv;Autodata Protection Service; C:\WINDOWS\system32\DRIVERS\adatadrv.sys [2009-07-01 762112]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2007-11-07 12928]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-12-20 4637696]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2011-09-02 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2011-09-02 39192]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-01-08 9888672]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2007-10-12 13312]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-12-05 104064]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-01-19 503144]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2010-04-27 22856]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2010-04-27 37704]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2010-04-27 66632]
S0 srescan;srescan; C:\WINDOWS\system32\ZoneLabs\srescan.sys []
S3 a881dvin;a881dvin; C:\WINDOWS\system32\drivers\a881dvin.sys []
S3 ALSysIO;ALSysIO; \??\C:\DOCUME~1\durman\LOCALS~1\Temp\ALSysIO.sys []
S3 BRIDGE;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 HTCAND32;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-06-10 24576]
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2010-06-22 21248]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2010-11-12 100456]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-07-30 47360]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2008-07-11 37088]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2010-08-20 26112]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2010-04-27 15048]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2007-09-14 427288]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe [2012-03-14 913752]
R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2012-01-31 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2012-01-31 86224]
R2 FreeAgentGoNext Service;Seagate Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-09-25 189736]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2011-10-08 820568]
R2 IswSvc;ZoneAlarm LTD Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2012-03-16 497280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2012-03-12 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-01-07 156776]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2011-09-15 88576]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-01-12 75136]
R2 TryAndDecideService;Acronis Try And Decide Service; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [2007-09-14 492600]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2012-03-19 2421640]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-22 136176]
S2 NOD32FiXTemDono;Eset Nod32 Boot; C:\WINDOWS\system32\regedt32.exe [2001-10-25 3584]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-22 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 295192]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 15:16
od vyosek
:arrow: S tim si poradime nasledne

:arrow: Odinstalujte Advanced SystemCare 5 a IObit Malware Fighter a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:08
od Durman
Chvilku to trvalo, zase se mi zasekl komp, tak byl restart.
(behem skenu na me Avira hodila 3x alert ze neco nasla, tak jsem to nemazal a radsi poslal do karanteny (nevim nakolik se ji da verit))
cely log se nevejde (maximalne 80tis. znaku)
_________________________

OTL logfile created on: 18.4.2012 16:42:20 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Documents and Settings\durman\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 77,61% Memory free
7,04 Gb Paging File | 6,19 Gb Available in Paging File | 87,86% Paging File free
Paging file location(s): C:\pagefile.sys 4046 10092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,64 Gb Total Space | 373,37 Gb Free Space | 53,44% Space Free | Partition Type: NTFS
Drive E: | 149,05 Gb Total Space | 110,28 Gb Free Space | 73,99% Space Free | Partition Type: NTFS
Drive F: | 0,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 14,90 Gb Total Space | 14,90 Gb Free Space | 100,00% Space Free | Partition Type: FAT32

Computer Name: DURMAN | User Name: durman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.04.18 16:39:14 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\durman\Plocha\OTL.exe
PRC - [2012.04.10 01:16:36 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.03.19 19:36:02 | 002,421,640 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
PRC - [2012.03.19 19:32:00 | 000,073,360 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
PRC - [2012.03.16 18:07:00 | 000,497,280 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe
PRC - [2012.03.16 18:06:56 | 000,738,944 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
PRC - [2012.01.31 08:57:32 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2012.01.31 08:57:06 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012.01.31 08:56:50 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.01.31 08:56:50 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.12.20 14:32:00 | 000,634,880 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
PRC - [2011.10.07 11:40:42 | 001,387,288 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
PRC - [2011.09.27 21:05:24 | 000,149,784 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
PRC - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011.05.25 10:00:02 | 000,491,040 | ---- | M] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe
PRC - [2009.09.25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
PRC - [2009.09.25 23:31:32 | 000,185,640 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.09.14 05:01:56 | 000,492,600 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
PRC - [2007.09.14 04:02:34 | 000,905,056 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
PRC - [2007.09.14 03:55:30 | 000,140,568 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2007.09.14 03:55:26 | 000,427,288 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2007.09.14 03:52:46 | 002,595,480 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2003.09.11 04:00:00 | 000,099,840 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S4I0H2.EXE
PRC - [2003.01.16 12:32:40 | 000,049,152 | ---- | M] (Ruling Tec Pte Ltd) -- C:\Program Files\VibrateGameDeviceDriver\rfpicon.exe


========== Modules (No Company Name) ==========

MOD - [2012.04.10 01:16:35 | 001,969,080 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.01.31 08:57:08 | 000,398,288 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011.12.20 14:32:00 | 001,515,520 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\Maps\R66Api.dll
MOD - [2011.12.20 14:32:00 | 000,634,880 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
MOD - [2011.12.20 14:32:00 | 000,559,244 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\sqlite3.7.dll
MOD - [2011.12.20 14:32:00 | 000,516,599 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\sqlite3.dll
MOD - [2011.12.20 14:32:00 | 000,389,120 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\htcDetect.dll
MOD - [2011.12.20 14:32:00 | 000,172,032 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\htcDetectLegend.dll
MOD - [2011.12.20 14:32:00 | 000,143,360 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\htcDisk.dll
MOD - [2011.12.20 14:32:00 | 000,103,936 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\OutputLog.dll
MOD - [2011.12.20 14:32:00 | 000,094,208 | ---- | M] () -- C:\Program Files\HTC\HTC Sync 3.0\fdHttpd.dll
MOD - [2011.10.18 00:46:33 | 011,485,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll
MOD - [2011.10.18 00:45:04 | 002,048,000 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2011.10.18 00:45:03 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2011.10.18 00:45:02 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2011.10.18 00:44:49 | 003,149,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2011.10.07 11:41:16 | 000,879,896 | ---- | M] () -- C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
MOD - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
MOD - [2011.05.25 10:00:02 | 000,491,040 | ---- | M] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe
MOD - [2011.05.25 09:59:56 | 000,821,792 | ---- | M] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\email.3.dll
MOD - [2011.05.25 09:59:40 | 001,145,888 | ---- | M] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\core.3.dll
MOD - [2010.04.04 18:57:04 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
MOD - [2010.04.04 18:57:00 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2007.09.14 05:01:56 | 000,492,600 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
MOD - [2007.09.14 02:45:10 | 001,328,408 | ---- | M] () -- C:\Program Files\Acronis\TrueImageHome\fox.dll


========== Win32 Services (SafeList) ==========

SRV - [2012.03.19 19:36:02 | 002,421,640 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe -- (vsmon)
SRV - [2012.03.16 18:07:00 | 000,497,280 | ---- | M] (Check Point Software Technologies) [Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe -- (IswSvc)
SRV - [2012.02.29 09:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.01.31 08:57:06 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.01.31 08:56:50 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.09.27 21:03:28 | 000,295,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.03.22 16:53:24 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009.09.25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2007.09.14 05:01:56 | 000,492,600 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService)
SRV - [2007.09.14 03:55:26 | 000,427,288 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2001.10.25 16:00:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (NOD32FiXTemDono)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | Boot | Stopped] -- system32\ZoneLabs\srescan.sys -- (srescan)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aw43qibz)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\durman\LOCALS~1\Temp\ALSysIO.sys -- (ALSysIO)
DRV - [2012.03.19 19:32:02 | 000,525,840 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (Vsdatant)
DRV - [2012.03.16 18:06:52 | 000,027,016 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys -- (ISWKL)
DRV - [2012.01.31 08:57:31 | 000,137,416 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012.01.31 08:57:31 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.09.16 16:09:17 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011.09.02 08:31:28 | 000,039,192 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011.09.02 08:31:20 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2011.09.02 08:30:58 | 000,012,184 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2011.03.16 19:00:46 | 000,140,848 | ---- | M] (IObit Information Technology) [File_System | Auto | Running] -- C:\Program Files\IObit\Protected Folder\pffilter.sys -- (PfFilter)
DRV - [2010.11.12 01:10:52 | 000,100,456 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2010.08.20 23:08:46 | 000,026,112 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2010.06.22 18:01:52 | 000,021,248 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\htcnprot.sys -- (htcnprot)
DRV - [2010.06.17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.04.27 16:57:28 | 000,066,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2010.04.27 16:57:28 | 000,015,048 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2010.04.27 16:57:22 | 000,022,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2010.04.27 14:01:26 | 000,037,704 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2010.03.13 21:01:50 | 000,611,064 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.02.03 16:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.07.01 16:43:06 | 000,762,112 | R--- | M] (none) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adatadrv.sys -- (adatadrv)
DRV - [2009.06.10 00:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys -- (HTCAND32)
DRV - [2009.01.28 17:04:38 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2009.01.28 17:04:38 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2009.01.28 17:04:30 | 000,129,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
DRV - [2009.01.28 17:04:20 | 000,368,736 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpman.sys -- (tdrpman)
DRV - [2008.07.11 08:05:00 | 000,037,088 | ---- | M] (SafeNet, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS -- (SNTNLUSB)
DRV - [2008.07.07 09:40:49 | 000,056,108 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008.04.14 01:26:08 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2007.12.20 19:00:06 | 004,637,696 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.12.05 22:45:30 | 000,104,064 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007.11.07 20:15:44 | 000,012,928 | ---- | M] (Padix Co., Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DynCal.sys -- (DynCal)
DRV - [2007.10.12 16:53:10 | 000,013,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2006.09.24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.07.01 23:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.03.01 19:51:15 | 000,051,200 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2006.02.21 14:48:05 | 000,049,664 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync04.sys -- (sfsync04) StarForce Protection Synchronization Driver (version 4.x)
DRV - [2006.02.14 16:48:36 | 000,006,656 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.11.21 07:48:20 | 000,016,512 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2005.03.16 08:23:54 | 000,013,696 | R--- | M] (BIOSTAR Group) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\BIOS.sys -- (BIOS)
DRV - [2001.10.25 16:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2001.10.25 16:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [1996.04.03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk

IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes,DefaultScope = {0D7562AE-8EF6-416d-A838-AB665251703A}
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... E45D657F3E
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes\{4179ED28-0094-45eb-B743-1290A1B5FAFF}: "URL" = http://webalta.ru/poisk?q={searchTerms}
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.11
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: noia2_option@kk.noia:3.76
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.63
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.9
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3
FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.19
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.23.0.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: foxyproxy@eric.h.jung:3.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.4.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31
FF - prefs.js..extensions.enabledItems: {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76
FF - prefs.js..extensions.enabledItems: {7b90e860-5d61-11e0-80e3-0800200c9a66}:1.4.6
FF - prefs.js..keyword.URL: "http://start.facemoods.com/results.php?f=5&a=desktop&q="
FF - prefs.js..network.proxy.type: 4


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll ()
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\MpcStar\Codecs\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\durman\Data aplikací\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2012.04.09 21:39:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.04.10 01:16:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.14 16:04:08 | 000,000,000 | ---D | M]

[2009.01.27 22:37:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Extensions
[2012.04.17 16:11:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions
[2010.03.02 20:32:06 | 000,000,000 | ---D | M] (Noia 2.0 (eXtreme)) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
[2010.04.05 00:02:02 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2012.03.29 20:04:45 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012.01.06 18:24:58 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011.11.06 19:37:56 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010.03.26 02:20:34 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2012.03.14 17:54:24 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.08.10 00:21:07 | 000,000,000 | ---D | M] (Разпознаване на устройство Logitech) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com
[2012.03.14 17:54:16 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\foxyproxy@eric.h.jung
[2010.03.02 20:32:12 | 000,000,000 | ---D | M] (Noia 2.0 eXtreme OPT) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\noia2_option@kk.noia
[2010.11.28 16:16:46 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\searchplugins\askcom.xml
[2012.04.10 01:16:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{9AA46F4F-4DC7-4C06-97AF-5035170634FE}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\DEVICEDETECTION@LOGITECH.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\FOXYPROXY@ERIC.H.JUNG
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\NOIAFOXOPTION@DAVIDVINCENT.TLD.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\TOGGLEPERSONA@DAVIDVINCENT.TLD.XPI
[2012.04.10 01:16:37 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.02.21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2012.03.12 22:01:14 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.11.29 12:25:56 | 000,002,039 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchdesktop.xml
[2012.04.10 01:16:32 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.04.10 01:16:32 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.05.06 17:29:09 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2012.04.10 01:16:32 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.04.10 01:16:32 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.04.10 01:16:32 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2012.04.03 00:47:09 | 000,441,479 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15176 more lines...
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [EPSON Stylus Photo R200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [eTrustPPAP] C:\Program Files\CA\eTrust PestPatrol\PPActiveDetection.exe (Computer Associates)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [HTC Sync Loader] C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe ()
O4 - HKLM..\Run: [ISW] C:\Program Files\CheckPoint\ZAForceField\ForceField.exe (Check Point Software Technologies)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [RTBatteryMeter] C:\Program Files\VibrateGameDeviceDriver\rfpicon.exe (Ruling Tec Pte Ltd)
O4 - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-21-329068152-1336601894-682003330-1003..\Run: [Seznam Postak] C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDow ... ab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5560AC28-C05C-471B-9361-DD9E3DDA0053}: DhcpNameServer = 192.168.2.100
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\durman\Data aplikací\IrfanView\IrfanView_Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\durman\Data aplikací\IrfanView\IrfanView_Wallpaper.bmp
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.01.27 04:31:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.04.24 17:26:50 | 000,000,027 | R--- | M] () - F:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{9d623bef-6472-11e0-80ee-00e04d8a0d4a}\Shell\AutoRun\command - "" = H:\JETAUDIO.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\Program Files\MpcStar\Codecs\tscc\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.wmv3 - C:\Program Files\Combined Community Codec Pack\Filters\wmv9vcm.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.04.18 16:39:13 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\durman\Plocha\OTL.exe
[2012.04.18 15:58:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\durman\Data aplikací\Avira
[2012.04.17 18:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Avira
[2012.04.17 18:08:00 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2012.04.17 18:07:58 | 000,137,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2012.04.17 18:07:58 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avkmgr.sys
[2012.04.17 18:07:57 | 000,074,640 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2012.04.17 18:07:57 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2012.04.17 18:07:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Avira
[2012.04.16 21:40:10 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.04.16 21:40:10 | 000,000,000 | ---D | C] -- C:\rsit
[2010.07.30 17:51:34 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\durman\Data aplikací\pcouffin.sys
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

File not found -- C:\Documents and Settings\durman\Plocha\CAWTY3WP.
[2012.04.18 16:46:10 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.04.18 16:44:11 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.04.18 16:39:14 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\durman\Plocha\OTL.exe
[2012.04.18 16:28:56 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.04.18 16:28:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.04.18 16:16:33 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.04.18 16:09:06 | 000,227,840 | ---- | M] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.04.17 18:08:11 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Avira Control Center.lnk
[2012.04.17 16:10:19 | 000,000,538 | ---- | M] () -- C:\Documents and Settings\durman\Plocha\Instalacky a hry (H).lnk
[2012.04.16 21:38:52 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\durman\Plocha\RSIT.exe
[2012.04.16 15:41:18 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys
[2012.04.15 20:34:48 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

File not found -- C:\Documents and Settings\durman\Plocha\CAWTY3WP.
[2012.04.18 16:44:11 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.04.17 18:08:11 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Avira Control Center.lnk
[2012.04.16 21:38:52 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\durman\Plocha\RSIT.exe
[2012.03.27 00:42:58 | 000,441,705 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2012.03.27 00:42:58 | 000,055,808 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll
[2012.02.01 17:58:16 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\inst.exe
[2012.01.12 00:14:38 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\PnkBstrK.sys
[2011.12.19 19:49:56 | 000,000,217 | ---- | C] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\SRDownloader.err
[2011.11.14 22:35:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\{954385B1-EE95-4CD2-A214-8A1AB1839A81}
[2011.10.24 18:29:06 | 000,000,968 | ---- | C] () -- C:\Documents and Settings\durman\Local Settings\Data aplikací\SRDownloader.nast
[2011.05.17 18:25:29 | 000,090,112 | ---- | C] () -- C:\WINDOWS\RSetupCE.exe
[2011.05.11 18:27:04 | 000,141,200 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.05.11 18:25:50 | 000,281,656 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011.05.11 18:25:35 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011.04.09 19:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.04.07 17:41:16 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.03.28 16:13:39 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\$_hpcst$.hpc
[2011.02.27 21:03:09 | 000,000,015 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2011.02.07 00:28:33 | 000,000,005 | ---- | C] () -- C:\WINDOWS\treeskp.sys
[2011.02.06 18:34:58 | 000,000,005 | ---- | C] () -- C:\WINDOWS\sbacknt.bin
[2011.02.06 09:20:28 | 003,465,401 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-329068152-1336601894-682003330-1003-0.dat
[2011.02.06 09:20:28 | 000,276,950 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.02.06 09:09:57 | 000,000,004 | ---- | C] () -- C:\WINDOWS\info147.sys
[2011.02.06 03:11:48 | 000,011,366 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\defaults.cfg
[2011.02.02 00:30:46 | 000,205,404 | ---- | C] () -- C:\WINDOWS\System32\SARCheck.dll
[2010.12.20 03:15:47 | 000,436,736 | R--- | C] () -- C:\WINDOWS\System32\Autoserv.exe
[2010.10.12 20:57:54 | 000,252,928 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010.10.12 20:57:52 | 000,252,928 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010.10.12 20:57:52 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010.10.12 20:57:12 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010.07.30 17:51:34 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\ezpinst.exe
[2010.07.30 17:51:34 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\pcouffin.cat
[2010.07.30 17:51:34 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\pcouffin.inf
[2010.07.17 17:20:54 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010.07.13 17:10:32 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\$_hpcst$.hpc
[2010.06.29 17:50:41 | 000,018,073 | ---- | C] () -- C:\WINDOWS\CSTBox.INI
[2010.04.28 17:16:37 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\durman\Data aplikací\setup_ldm.iss
[2010.04.24 13:07:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PestPatrol5.INI

========== LOP Check ==========

[2010.03.28 22:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2010.07.17 17:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
[2012.04.16 21:11:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2010.04.24 12:37:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CA
[2011.11.14 21:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CheckPoint
[2011.04.14 17:13:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2010.04.24 18:51:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ConeXware
[2009.01.27 22:24:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.11.18 05:10:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.01.16 17:28:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2010.04.06 17:16:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Seagate
[2012.04.03 01:01:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.08.22 15:20:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2011.07.19 15:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\YoWindow
[2012.01.03 22:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\.minecraft
[2011.11.18 03:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\BitComet
[2012.01.04 16:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Canon
[2012.03.26 23:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\CheckPoint
[2010.09.12 18:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\CometPlayer
[2011.09.15 23:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.03.10 19:51:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\COWON
[2012.03.22 21:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Dropbox
[2010.05.18 01:53:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Facebook
[2011.02.06 01:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\FFSJ
[2011.04.07 04:56:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\FS2009 Fruit-importer
[2011.08.02 23:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\GetRightToGo
[2012.03.08 22:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\gtk-2.0
[2012.03.20 22:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\HTC
[2011.10.18 01:10:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2012.04.16 16:04:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\IObit
[2010.04.13 23:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\IrfanView
[2010.04.28 17:16:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Leadertech
[2010.03.19 18:45:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Notepad++
[2012.03.20 23:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Outlook
[2011.04.14 11:15:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Passware
[2011.05.16 00:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Rovio
[2012.01.13 01:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Samsung
[2012.03.04 23:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TeamViewer
[2011.09.15 20:12:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TigerPlayer
[2011.04.01 19:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TS3Client
[2011.01.12 00:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Ubisoft
[2011.02.06 02:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\VitySoft
[2012.02.01 17:58:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Vso
[2011.07.19 16:06:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\YoWindow
[2009.01.28 17:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Acronis
[2011.12.08 23:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Samsung
[2011.05.06 18:24:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Acronis

========== Purity Check ==========

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:10
od vyosek
:arrow: Rozdelte log do vice prispevku

:arrow: Dejte prosim screen karanteny co nasla avira

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:11
od Durman
POKRACOVANI 2/3:
____________________________

========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 15:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 22:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\3c7acda88955ce3675d2c59997d8edca\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\3c7acda88955ce3675d2c59997d8edca\*.tmp -> ]
[9 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.01.03 22:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\.minecraft
[2012.02.12 20:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Adobe
[2010.09.30 15:18:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Ahead
[2012.04.18 15:58:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Avira
[2011.11.18 03:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\BitComet
[2012.01.04 16:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Canon
[2012.03.26 23:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\CheckPoint
[2010.09.12 18:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\CometPlayer
[2011.09.15 23:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.03.10 19:51:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\COWON
[2012.03.22 21:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Dropbox
[2011.03.28 17:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\dvdcss
[2010.05.18 01:53:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Facebook
[2011.02.06 01:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\FFSJ
[2011.04.07 04:56:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\FS2009 Fruit-importer
[2011.08.02 23:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\GetRightToGo
[2011.02.22 19:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Google
[2012.03.08 22:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\gtk-2.0
[2011.08.02 18:20:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Help
[2012.03.20 22:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\HTC
[2011.10.18 01:10:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2009.01.27 04:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Identities
[2009.01.27 04:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\InstallShield
[2012.04.16 16:04:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\IObit
[2010.04.13 23:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\IrfanView
[2010.04.28 17:16:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Leadertech
[2011.03.23 21:51:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Logishrd
[2011.03.23 21:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Logitech
[2010.03.02 17:56:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Macromedia
[2012.03.16 17:58:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\durman\Data aplikací\Microsoft
[2009.01.27 22:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Mozilla
[2011.11.14 21:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\NCH Software
[2010.03.19 18:45:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Notepad++
[2010.10.12 21:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\NVIDIA
[2012.03.20 23:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Outlook
[2011.04.14 11:15:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Passware
[2010.03.30 23:45:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Real
[2011.02.06 04:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Real Desktop
[2011.05.16 00:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Rovio
[2012.01.13 01:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Samsung
[2012.04.16 17:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Skype
[2011.06.22 17:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Sony Corporation
[2009.01.27 22:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Sun
[2010.10.24 16:42:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\teamspeak2
[2012.03.04 23:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TeamViewer
[2011.09.15 20:12:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TigerPlayer
[2011.04.01 19:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\TS3Client
[2010.05.06 19:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\U3
[2011.01.12 00:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Ubisoft
[2011.02.06 02:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\VitySoft
[2012.04.16 00:04:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\vlc
[2012.02.01 17:58:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\Vso
[2011.04.12 00:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\WinRAR
[2011.07.19 16:06:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\YoWindow

< %APPDATA%\*.exe /s >
[2010.07.30 17:51:34 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\ezpinst.exe
[2012.02.01 17:58:16 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\inst.exe
[2011.05.28 22:24:33 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Documents and Settings\durman\Data aplikací\.minecraft\MinecraftSP.exe
[2011.05.29 16:52:12 | 000,671,534 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\.minecraft\Minecraft_Server.exe
[2011.06.18 18:10:12 | 000,097,280 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\.minecraft\Mineshafter-proxy.exe
[2012.02.15 01:03:14 | 024,246,216 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe
[2012.02.15 01:03:44 | 000,174,752 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Uninstall.exe
[2010.05.18 01:53:00 | 000,050,354 | ---- | M] (Facebook, Inc.) -- C:\Documents and Settings\durman\Data aplikací\Facebook\uninstall.exe
[2011.04.14 11:06:57 | 000,367,686 | R--- | M] () -- C:\Documents and Settings\durman\Data aplikací\Microsoft\Installer\{2282C742-8E14-4E71-8329-5253E51B2834}\icon.exe
[2012.04.16 15:41:37 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\durman\Data aplikací\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2011.02.06 20:01:13 | 000,051,337 | R--- | M] () -- C:\Documents and Settings\durman\Data aplikací\Microsoft\Installer\{5D841912-A8D8-4828-A3FA-4EA543E8F753}\_7CAD36DF2BE29C8E221640.exe
[2011.02.06 20:01:13 | 000,051,337 | R--- | M] () -- C:\Documents and Settings\durman\Data aplikací\Microsoft\Installer\{5D841912-A8D8-4828-A3FA-4EA543E8F753}\_9B6638BF557144BE7B479D.exe
[2010.03.17 18:38:03 | 000,177,024 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\FlashGot.exe
[2010.03.22 16:53:24 | 000,029,984 | ---- | M] (NOS Microsystems Ltd.) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg.exe
[2006.12.07 10:45:12 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\durman\Data aplikací\U3\temp\cleanup.exe
[2006.12.07 10:45:12 | 003,096,576 | -H-- | M] (SanDisk Corporation) -- C:\Documents and Settings\durman\Data aplikací\U3\temp\Launchpad Removal.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[9 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2012.04.18 16:28:56 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2012.04.18 16:46:10 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.03.13 21:01:50 | 000,611,064 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2009.01.27 05:19:35 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.01.27 05:19:35 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.01.27 05:19:35 | 000,483,328 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[9 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >
[2012.04.16 15:41:18 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LNonPnP.sys

< %systemroot%\system32\*.* /3 >
[2012.04.15 20:34:48 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[9 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 09:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"H/PC Connection Agent" = "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" -- [2006.11.13 16:50:20 | 001,289,000 | ---- | M] (Microsoft Corporation)
"Seznam Postak" = "C:\Documents and Settings\durman\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s -- [2011.05.25 10:00:02 | 000,491,040 | ---- | M] ()

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.04.10 01:16:36 | 000,924,600 | ---- | M] (Mozilla Corporation) MD5=637F2BDC0E53704D121DDD27A1F62090 -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2008.04.14 09:52:28 | 000,093,184 | ---- | M] (Microsoft Corporation) MD5=414AFE6E8CCDE984E16D5ED08624CEC6 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.04.18 16:44:11 | 000,000,512 | ---- | M] () MD5=1843856E280BEA922BE247EE7D25CEDD -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2011.05.09 23:42:37 | 000,012,116 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrack.cfx
[2011.05.09 23:42:43 | 000,012,168 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatest.cfx
[2011.05.09 23:42:43 | 000,012,536 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2011.05.09 23:42:45 | 000,012,852 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2011.05.09 23:42:47 | 000,012,436 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2011.05.09 23:42:45 | 000,012,488 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestshadow.cfx
[2011.05.09 23:42:37 | 000,012,484 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcracklightmap.cfx
[2011.05.09 23:42:40 | 000,012,800 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcracklightmapshadow.cfx
[2011.05.09 23:42:39 | 000,012,720 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2011.05.09 23:42:44 | 000,012,756 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2011.05.09 23:42:45 | 000,013,096 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2011.05.09 23:42:47 | 000,013,468 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2011.05.09 23:42:48 | 000,012,816 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2011.05.09 23:42:47 | 000,013,144 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2011.05.09 23:42:39 | 000,013,060 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2011.05.09 23:42:41 | 000,013,432 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2011.05.09 23:42:39 | 000,012,880 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetail.cfx
[2011.05.09 23:42:45 | 000,012,916 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatest.cfx
[2011.05.09 23:42:45 | 000,013,256 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2011.05.09 23:42:47 | 000,013,628 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2011.05.09 23:42:48 | 000,012,940 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2011.05.09 23:42:47 | 000,013,304 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2011.05.09 23:42:39 | 000,013,220 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmap.cfx
[2011.05.09 23:42:41 | 000,013,592 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2011.05.09 23:42:43 | 000,012,904 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailpointlight.cfx
[2011.05.09 23:42:41 | 000,013,268 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailshadow.cfx
[2011.05.09 23:42:42 | 000,012,780 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2011.05.09 23:42:41 | 000,013,108 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2011.05.09 23:42:42 | 000,012,400 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackpointlight.cfx
[2011.05.09 23:42:40 | 000,012,436 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackshadow.cfx
[2011.05.09 23:42:37 | 000,012,296 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrack.cfx
[2011.05.09 23:42:43 | 000,012,348 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatest.cfx
[2011.05.09 23:42:43 | 000,012,716 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2011.05.09 23:42:46 | 000,013,032 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2011.05.09 23:42:47 | 000,012,612 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2011.05.09 23:42:46 | 000,012,668 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2011.05.09 23:42:37 | 000,012,664 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcracklightmap.cfx
[2011.05.09 23:42:40 | 000,012,980 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2011.05.09 23:42:39 | 000,012,900 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2011.05.09 23:42:45 | 000,012,936 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2011.05.09 23:42:45 | 000,013,276 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2011.05.09 23:42:47 | 000,013,648 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2011.05.09 23:42:48 | 000,012,996 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2011.05.09 23:42:47 | 000,013,324 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2011.05.09 23:42:39 | 000,013,240 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2011.05.09 23:42:41 | 000,013,612 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2011.05.09 23:42:39 | 000,013,060 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetail.cfx
[2011.05.09 23:42:45 | 000,013,096 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatest.cfx
[2011.05.09 23:42:45 | 000,013,436 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2011.05.09 23:42:47 | 000,013,808 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2011.05.09 23:42:48 | 000,013,120 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2011.05.09 23:42:47 | 000,013,484 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2011.05.09 23:42:39 | 000,013,400 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmap.cfx
[2011.05.09 23:42:41 | 000,013,772 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2011.05.09 23:42:43 | 000,013,084 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailpointlight.cfx
[2011.05.09 23:42:41 | 000,013,448 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailshadow.cfx
[2011.05.09 23:42:42 | 000,012,960 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2011.05.09 23:42:41 | 000,013,288 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2011.05.09 23:42:42 | 000,012,576 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackpointlight.cfx
[2011.05.09 23:42:40 | 000,012,616 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\bf2\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackshadow.cfx
[2008.05.13 23:50:09 | 000,064,900 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrack.cfx
[2008.05.13 23:50:34 | 000,065,104 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackalphatest.cfx
[2008.05.13 23:50:34 | 000,066,936 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2008.05.13 23:50:44 | 000,069,212 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2008.05.13 23:50:53 | 000,065,076 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2008.05.13 23:50:44 | 000,067,236 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackalphatestshadow.cfx
[2008.05.13 23:50:09 | 000,066,732 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcracklightmap.cfx
[2008.05.13 23:50:19 | 000,069,008 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcracklightmapshadow.cfx
[2008.05.13 23:50:14 | 000,065,536 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrack.cfx
[2008.05.13 23:50:39 | 000,065,740 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2008.05.13 23:50:40 | 000,067,516 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2008.05.13 23:50:50 | 000,069,864 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2008.05.13 23:50:56 | 000,066,132 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2008.05.13 23:50:50 | 000,067,812 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2008.05.13 23:50:15 | 000,067,312 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2008.05.13 23:50:25 | 000,069,660 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2008.05.13 23:50:30 | 000,065,928 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2008.05.13 23:50:24 | 000,067,608 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2008.05.13 23:50:28 | 000,064,872 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackpointlight.cfx
[2008.05.13 23:50:19 | 000,067,032 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetailcrackshadow.cfx
[2008.05.13 23:50:10 | 000,064,948 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrack.cfx
[2008.05.13 23:50:35 | 000,065,152 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackalphatest.cfx
[2008.05.13 23:50:35 | 000,066,984 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2008.05.13 23:50:45 | 000,069,260 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2008.05.13 23:50:53 | 000,065,124 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2008.05.13 23:50:45 | 000,067,284 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2008.05.13 23:50:10 | 000,066,780 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcracklightmap.cfx
[2008.05.13 23:50:20 | 000,069,056 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2008.05.13 23:50:15 | 000,065,584 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2008.05.13 23:50:40 | 000,065,788 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2008.05.13 23:50:41 | 000,067,564 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2008.05.13 23:50:51 | 000,069,912 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2008.05.13 23:50:56 | 000,066,180 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2008.05.13 23:50:51 | 000,067,860 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2008.05.13 23:50:15 | 000,067,360 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2008.05.13 23:50:26 | 000,069,708 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2008.05.13 23:50:31 | 000,065,976 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2008.05.13 23:50:25 | 000,067,656 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2008.05.13 23:50:28 | 000,064,920 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackpointlight.cfx
[2008.05.13 23:50:20 | 000,067,080 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4200-11CF-EC7E-0B2003C2CB35}_2965_1\rashaderstmbasedetaildirtcrackshadow.cfx
[2011.05.10 16:19:19 | 000,066,028 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrack.cfx
[2011.05.10 16:19:46 | 000,066,344 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatest.cfx
[2011.05.10 16:19:46 | 000,068,184 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2011.05.10 16:19:57 | 000,070,652 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2011.05.10 16:20:07 | 000,065,440 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2011.05.10 16:19:56 | 000,068,548 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackalphatestshadow.cfx
[2011.05.10 16:19:19 | 000,067,852 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcracklightmap.cfx
[2011.05.10 16:19:30 | 000,070,320 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcracklightmapshadow.cfx
[2011.05.10 16:19:25 | 000,067,280 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2011.05.10 16:19:52 | 000,067,612 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2011.05.10 16:19:52 | 000,069,452 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2011.05.10 16:20:04 | 000,071,872 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2011.05.10 16:20:10 | 000,067,272 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2011.05.10 16:20:03 | 000,069,816 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2011.05.10 16:19:26 | 000,069,120 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2011.05.10 16:19:37 | 000,071,576 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2011.05.10 16:19:26 | 000,068,084 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetail.cfx
[2011.05.10 16:19:53 | 000,068,652 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatest.cfx
[2011.05.10 16:19:54 | 000,070,540 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2011.05.10 16:20:05 | 000,072,924 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2011.05.10 16:20:10 | 000,068,432 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2011.05.10 16:20:05 | 000,070,856 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2011.05.10 16:19:27 | 000,069,972 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmap.cfx
[2011.05.10 16:19:38 | 000,072,356 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2011.05.10 16:19:44 | 000,067,960 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailpointlight.cfx
[2011.05.10 16:19:38 | 000,070,288 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailshadow.cfx
[2011.05.10 16:19:43 | 000,067,036 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2011.05.10 16:19:37 | 000,069,484 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2011.05.10 16:19:40 | 000,065,208 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackpointlight.cfx
[2011.05.10 16:19:29 | 000,068,220 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetailcrackshadow.cfx
[2011.05.10 16:19:19 | 000,066,076 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrack.cfx
[2011.05.10 16:19:46 | 000,066,392 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatest.cfx
[2011.05.10 16:19:46 | 000,068,232 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2011.05.10 16:19:57 | 000,070,700 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2011.05.10 16:20:07 | 000,065,488 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2011.05.10 16:19:57 | 000,068,596 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2011.05.10 16:19:19 | 000,067,900 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcracklightmap.cfx
[2011.05.10 16:19:30 | 000,070,368 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2011.05.10 16:19:26 | 000,067,328 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2011.05.10 16:19:53 | 000,067,660 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2011.05.10 16:19:53 | 000,069,500 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2011.05.10 16:20:04 | 000,071,920 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2011.05.10 16:20:10 | 000,067,320 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2011.05.10 16:20:04 | 000,069,864 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2011.05.10 16:19:26 | 000,069,168 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2011.05.10 16:19:38 | 000,071,624 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2011.05.10 16:19:27 | 000,068,132 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetail.cfx
[2011.05.10 16:19:54 | 000,068,700 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatest.cfx
[2011.05.10 16:19:54 | 000,070,588 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2011.05.10 16:20:06 | 000,072,972 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2011.05.10 16:20:11 | 000,068,480 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2011.05.10 16:20:05 | 000,070,904 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2011.05.10 16:19:27 | 000,070,020 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmap.cfx
[2011.05.10 16:19:39 | 000,072,404 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2011.05.10 16:19:44 | 000,068,008 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailpointlight.cfx
[2011.05.10 16:19:38 | 000,070,336 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailshadow.cfx
[2011.05.10 16:19:43 | 000,067,084 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2011.05.10 16:19:37 | 000,069,532 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2011.05.10 16:19:40 | 000,065,256 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackpointlight.cfx
[2011.05.10 16:19:30 | 000,068,268 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\Battlefield 2\mods\xpack\cache\{D7B71E3E-4562-11CF-6C69-492500C2CB35}_2965_3\rashaderstmbasedetaildirtcrackshadow.cfx
[2011.09.08 19:17:28 | 000,599,242 | ---- | M] () -- \HRY\APB Reloaded\APBGame\Content\Release\Packages\SymbolEditor\Primitives_SplatsCracks.upk
[2010.10.04 23:50:56 | 000,062,238 | ---- | M] () -- \Program Files\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
[2011.12.19 19:53:55 | 000,004,328 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\CrackedCom.class

< *keygen* /s >

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:14
od Durman
pokracovani 3/3


< *loader* /s >
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2010.11.25 19:42:45 | 000,000,334 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\JDownloader\JDownloader Support.lnk
[2010.11.25 19:42:45 | 000,000,814 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\JDownloader\JDownloader.lnk
[2010.11.25 19:42:47 | 000,000,804 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\JDownloader\Uninstall JDownloader.lnk
[2010.11.25 19:42:45 | 000,000,746 | ---- | M] () -- \Documents and Settings\All Users\Plocha\JDownloader.lnk
[2010.03.06 07:30:38 | 000,847,040 | ---- | M] () -- \Documents and Settings\durman\Data aplikací\Facebook\axfbootloader.dll
[2012.03.20 22:27:50 | 000,904,126 | ---- | M] () -- \Documents and Settings\durman\Data aplikací\HTC\htcUPCTLoader.bmp
[2012.03.20 22:27:51 | 000,423,082 | ---- | M] () -- \Documents and Settings\durman\Data aplikací\HTC\htcUPCTLoader.dmp
[2011.02.11 18:47:20 | 000,094,491 | ---- | M] () -- \Documents and Settings\durman\Dokumenty\My Games\FarmingSimulator2011\mods-origo\FrontloaderCutters.zip
[2012.02.15 19:04:48 | 000,000,217 | ---- | M] () -- \Documents and Settings\durman\Local Settings\Data aplikací\SRDownloader.err
[2012.02.15 20:19:35 | 000,000,968 | ---- | M] () -- \Documents and Settings\durman\Local Settings\Data aplikací\SRDownloader.nast
[2010.03.13 16:12:38 | 000,000,328 | ---- | M] () -- \Documents and Settings\durman\Nabídka Start\Programy\JDownloader\JDownloader Support.lnk
[2010.03.13 16:12:38 | 000,000,808 | ---- | M] () -- \Documents and Settings\durman\Nabídka Start\Programy\JDownloader\JDownloader.lnk
[2010.03.13 16:12:40 | 000,000,798 | ---- | M] () -- \Documents and Settings\durman\Nabídka Start\Programy\JDownloader\Uninstall JDownloader.lnk
[2012.02.15 19:05:07 | 000,904,704 | ---- | M] () -- \Documents and Settings\durman\Plocha\SRDownloader.exe
[2005.09.19 12:30:30 | 000,001,825 | R--- | M] () -- \HRY\Age of Empires 3\AI\aiLoaderInactive.xs
[2005.09.19 12:30:30 | 000,001,575 | R--- | M] () -- \HRY\Age of Empires 3\AI\aiLoaderStandard.xs
[2011.09.08 19:17:50 | 000,002,713 | ---- | M] () -- \HRY\APB Reloaded\APBGame\Gecko\Data\components\uriloader.xpt
[2011.09.08 19:18:00 | 000,065,536 | ---- | M] () -- \HRY\APB Reloaded\Binaries\PhysXLocal\PhysXLoader.dll
[2010.02.10 03:38:44 | 003,473,163 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_001\loader-00.fbrb
[2010.02.10 03:38:44 | 003,417,011 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_001sr\loader-00.fbrb
[2010.02.10 03:38:44 | 005,299,907 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_002\loader-00.fbrb
[2010.02.10 03:38:46 | 005,283,781 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_002sr\loader-00.fbrb
[2010.02.10 03:38:46 | 006,458,338 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_003\loader-00.fbrb
[2010.02.10 03:38:48 | 005,719,429 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_004\loader-00.fbrb
[2010.02.10 03:38:48 | 005,681,043 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_004sdm\loader-00.fbrb
[2010.02.10 03:38:48 | 005,975,692 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_005\loader-00.fbrb
[2010.02.10 03:38:50 | 005,952,738 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_005sr\loader-00.fbrb
[2010.02.10 03:38:50 | 003,625,529 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_006\loader-00.fbrb
[2010.02.10 03:38:50 | 003,618,790 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_006cq\loader-00.fbrb
[2010.02.10 03:38:50 | 003,609,949 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_006sdm\loader-00.fbrb
[2010.02.10 03:38:52 | 005,127,190 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_007\loader-00.fbrb
[2010.02.10 03:38:52 | 005,117,095 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_007sdm\loader-00.fbrb
[2010.02.10 03:38:52 | 003,702,695 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_008\loader-00.fbrb
[2010.02.10 03:38:52 | 003,568,288 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_009cq\loader-00.fbrb
[2010.02.10 03:38:54 | 003,565,006 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_009gr\loader-00.fbrb
[2010.02.10 03:38:54 | 003,544,807 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_009sdm\loader-00.fbrb
[2010.02.10 03:38:54 | 006,516,783 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_012gr\loader-00.fbrb
[2010.02.10 03:38:56 | 006,556,315 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_012sr\loader-00.fbrb
[2010.02.10 03:38:44 | 007,748,201 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\mp_common\loader-00.fbrb
[2010.02.10 03:47:40 | 004,575,342 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_003_B\loader-00.fbrb
[2010.02.10 03:47:42 | 005,437,555 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_004_B\loader-00.fbrb
[2010.02.10 03:47:42 | 005,555,302 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_005\loader-00.fbrb
[2010.02.10 03:47:44 | 006,135,296 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_005_B\loader-00.fbrb
[2010.02.10 03:47:44 | 005,228,984 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_006\loader-00.fbrb
[2010.02.10 03:47:44 | 006,938,136 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_007\loader-00.fbrb
[2010.02.10 03:47:46 | 005,814,240 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_008\loader-00.fbrb
[2010.02.10 03:47:46 | 005,800,297 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_008_B\loader-00.fbrb
[2010.02.10 03:47:48 | 006,397,231 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_009\loader-00.fbrb
[2010.02.10 03:47:38 | 002,006,427 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_01\loader-00.fbrb
[2010.02.10 03:47:40 | 004,760,479 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_02\loader-00.fbrb
[2010.02.10 03:47:40 | 006,542,963 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_03\loader-00.fbrb
[2010.02.10 03:47:42 | 005,840,761 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_04\loader-00.fbrb
[2010.02.10 03:47:38 | 001,271,669 | ---- | M] () -- \HRY\Battlefield_2\Dist\win32\levels\sp_common\loader-00.fbrb
[2011.01.03 21:59:35 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_harvest_day_cq\loader-00.fbrb
[2011.01.03 22:00:13 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_harvest_day_gr\loader-00.fbrb
[2011.01.03 22:00:50 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_harvest_day_sdm\loader-00.fbrb
[2011.01.03 22:01:34 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_harvest_day_sr\loader-00.fbrb
[2011.01.03 22:02:20 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_oasis_cq\loader-00.fbrb
[2011.01.03 22:02:58 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_oasis_gr\loader-00.fbrb
[2011.01.03 22:03:35 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_oasis_sdm\loader-00.fbrb
[2011.01.03 22:04:03 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\bc1_oasis_sr\loader-00.fbrb
[2011.01.03 22:10:30 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_001\loader-00.fbrb
[2011.01.03 22:10:55 | 007,538,149 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_001sdm\loader-00.fbrb
[2011.01.03 22:12:09 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_001sr\loader-00.fbrb
[2011.01.03 22:12:55 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_002\loader-00.fbrb
[2011.01.03 22:13:41 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_002sr\loader-00.fbrb
[2011.01.03 22:14:35 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_003\loader-00.fbrb
[2011.01.03 22:14:56 | 005,837,421 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_003sr\loader-00.fbrb
[2011.01.03 22:15:54 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_004\loader-00.fbrb
[2011.01.03 22:16:50 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_004sdm\loader-00.fbrb
[2011.01.03 22:17:47 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_005\loader-00.fbrb
[2011.01.03 22:19:11 | 006,015,001 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_005gr\loader-00.fbrb
[2011.01.03 22:20:13 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_005sr\loader-00.fbrb
[2011.01.03 22:21:38 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_006\loader-00.fbrb
[2011.01.03 22:22:23 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_006cq\loader-00.fbrb
[2011.01.03 22:23:09 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_006sdm\loader-00.fbrb
[2011.01.03 22:24:08 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_007\loader-00.fbrb
[2011.01.03 22:24:29 | 006,098,311 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_007gr\loader-00.fbrb
[2011.01.03 22:25:44 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_007sdm\loader-00.fbrb
[2011.01.03 22:26:42 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_008\loader-00.fbrb
[2011.01.03 22:27:07 | 006,029,753 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_008cq\loader-00.fbrb
[2011.01.03 22:28:17 | 006,015,769 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_008sdm\loader-00.fbrb
[2011.01.03 22:29:28 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_009cq\loader-00.fbrb
[2011.01.03 22:30:09 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_009gr\loader-00.fbrb
[2011.01.03 22:30:58 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_009sdm\loader-00.fbrb
[2011.01.03 22:31:20 | 005,878,581 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_009sr\loader-00.fbrb
[2011.01.03 22:32:44 | 006,018,415 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_012cq\loader-00.fbrb
[2011.01.03 22:33:59 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_012gr\loader-00.fbrb
[2011.01.03 22:34:43 | 002,348,267 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_012sr\loader-00.fbrb
[2011.01.03 22:35:17 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_sp_002gr\loader-00.fbrb
[2011.01.03 22:35:50 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_sp_002sdm\loader-00.fbrb
[2011.01.03 22:36:31 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_sp_002sr\loader-00.fbrb
[2011.01.03 22:37:07 | 001,612,131 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_sp_005cq\loader-00.fbrb
[2011.01.03 22:37:33 | 000,000,157 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp_sp_005sdm\loader-00.fbrb
[2011.01.03 22:08:58 | 007,593,348 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\mp2_common\loader-00.fbrb
[2011.01.03 22:54:03 | 063,932,962 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_common\loader-00.fbrb
[2011.01.03 22:54:55 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_002cq\loader-00.fbrb
[2011.01.03 22:55:30 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_002r\loader-00.fbrb
[2011.01.03 22:55:31 | 000,001,204 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_002sdm\loader-00.fbrb
[2011.01.03 22:55:50 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_002sr\loader-00.fbrb
[2011.01.03 22:56:10 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_003cq\loader-00.fbrb
[2011.01.03 22:56:47 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_003r\loader-00.fbrb
[2011.01.03 22:56:48 | 000,001,203 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_003sdm\loader-00.fbrb
[2011.01.03 22:57:07 | 000,001,006 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_003sr\loader-00.fbrb
[2011.01.03 22:57:28 | 000,001,009 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_005cq\loader-00.fbrb
[2011.01.03 22:57:47 | 000,001,009 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_005r\loader-00.fbrb
[2011.01.03 22:58:07 | 000,001,205 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_005sdm\loader-00.fbrb
[2011.01.03 22:58:37 | 000,001,009 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_005sr\loader-00.fbrb
[2011.01.03 22:58:58 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_006cq\loader-00.fbrb
[2011.01.03 22:59:18 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_006r\loader-00.fbrb
[2011.01.03 22:59:38 | 000,001,203 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_006sdm\loader-00.fbrb
[2011.01.03 23:00:09 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_006sr\loader-00.fbrb
[2011.01.03 23:00:29 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_007cq\loader-00.fbrb
[2011.01.03 23:00:48 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_007r\loader-00.fbrb
[2011.01.03 23:01:11 | 000,001,202 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_007sdm\loader-00.fbrb
[2011.01.03 23:02:00 | 000,001,008 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\nam_mp_007sr\loader-00.fbrb
[2011.01.03 23:02:39 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_003_b\loader-00.fbrb
[2011.01.03 23:03:30 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_004_b\loader-00.fbrb
[2011.01.03 23:04:00 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_005\loader-00.fbrb
[2011.01.03 23:05:41 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_005_b\loader-00.fbrb
[2011.01.03 23:06:42 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_006\loader-00.fbrb
[2011.01.03 23:07:43 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_007\loader-00.fbrb
[2011.01.03 23:08:36 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_008\loader-00.fbrb
[2011.01.03 23:09:15 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_008_b\loader-00.fbrb
[2011.01.03 23:09:54 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_009\loader-00.fbrb
[2011.01.03 23:10:43 | 001,131,202 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_01\loader-00.fbrb
[2011.01.03 23:11:13 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_02\loader-00.fbrb
[2011.01.03 23:12:55 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_03\loader-00.fbrb
[2011.01.03 23:13:43 | 001,131,558 | ---- | M] () -- \HRY\Battlefield_2\Package\levels\sp_04\loader-00.fbrb
[2008.04.08 08:54:14 | 000,000,115 | ---- | M] () -- \HRY\GRID\audio\audio_loader.xml
[2008.04.17 20:02:14 | 000,001,028 | ---- | M] () -- \HRY\GRID\Osd\osd_loader.xml
[2002.12.30 15:18:30 | 000,086,016 | ---- | M] () -- \HRY\Jigs@w Puzzle Nature Edition\SFiles\loader.dat
[2010.12.23 15:37:10 | 000,071,008 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\PhysXLoader.dll
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\store_baleLoader.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\store_deutzFrontloaderBalefork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\store_deutzFrontloaderPalletfork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\store_deutzFrontloaderShovel.dds
[2010.10.03 22:25:36 | 006,936,663 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.i3d
[2010.12.06 16:22:12 | 000,007,803 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.xml
[2010.10.01 12:27:36 | 000,696,448 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_diffuse.dds
[2010.09.27 22:34:32 | 000,174,904 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_normal.dds
[2010.09.28 10:10:08 | 000,174,904 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_specular.dds
[2010.10.29 17:20:12 | 000,115,296 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.i3d
[2010.09.17 18:11:34 | 000,000,515 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.xml
[2010.11.12 11:05:54 | 000,136,285 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.i3d
[2010.09.17 18:11:34 | 000,000,517 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.xml
[2010.10.29 17:20:12 | 000,105,628 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderShovel.i3d
[2010.09.01 20:15:06 | 000,000,710 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\steerable\deutz\deutzFrontloaderShovel.xml
[2010.11.17 17:15:42 | 000,615,989 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\trailers\baleLoader.i3d
[2010.11.12 11:06:04 | 000,008,640 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\trailers\baleLoader.xml
[2010.09.20 18:50:14 | 000,174,904 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\trailers\baleLoaderWheel_diffuse.dds
[2010.09.20 18:50:14 | 000,699,192 | ---- | M] () -- \HRY\Landwirtschafts Simulator 2011\data\vehicles\trailers\baleLoader_diffuse.dds
[2010.06.11 09:49:20 | 000,071,008 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\PhysXLoader.dll
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\store_baleLoader.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\store_deutzFrontloaderBalefork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\store_deutzFrontloaderPalletfork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\store_deutzFrontloaderShovel.dds
[2010.10.03 22:25:36 | 006,936,663 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.i3d
[2010.11.17 11:52:20 | 000,007,780 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.xml
[2010.10.01 12:27:36 | 000,696,448 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_diffuse.dds
[2010.09.27 22:34:32 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_normal.dds
[2010.09.28 10:10:08 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_specular.dds
[2010.10.29 17:20:12 | 000,115,296 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.i3d
[2010.09.17 18:11:34 | 000,000,515 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.xml
[2010.11.12 11:05:54 | 000,136,285 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.i3d
[2010.09.17 18:11:34 | 000,000,517 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.xml
[2010.10.29 17:20:12 | 000,105,628 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.i3d
[2010.09.01 20:15:06 | 000,000,710 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.xml
[2010.11.17 17:15:42 | 000,615,989 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\trailers\baleLoader.i3d
[2010.11.12 11:06:04 | 000,008,640 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\trailers\baleLoader.xml
[2010.09.20 18:50:14 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\trailers\baleLoaderWheel_diffuse.dds
[2010.09.20 18:50:14 | 000,699,192 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.0)\data\vehicles\trailers\baleLoader_diffuse.dds
[2010.06.11 09:49:20 | 000,071,008 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\PhysXLoader.dll
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\store_baleLoader.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\store_deutzFrontloaderBalefork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\store_deutzFrontloaderPalletfork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\store_deutzFrontloaderShovel.dds
[2010.10.03 22:25:36 | 006,936,663 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.i3d
[2010.12.06 20:40:46 | 000,007,803 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.xml
[2010.10.01 12:27:36 | 000,696,448 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_diffuse.dds
[2010.09.27 22:34:32 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_normal.dds
[2010.09.28 10:10:08 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_specular.dds
[2010.10.29 21:22:02 | 000,115,296 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.i3d
[2010.09.17 18:11:34 | 000,000,515 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.xml
[2010.11.13 00:03:18 | 000,136,285 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.i3d
[2010.09.17 18:11:34 | 000,000,517 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.xml
[2010.10.29 21:22:02 | 000,105,628 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.i3d
[2010.09.01 20:15:06 | 000,000,710 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.xml
[2010.11.17 23:32:56 | 000,615,989 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\trailers\baleLoader.i3d
[2010.11.13 00:03:22 | 000,008,640 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\trailers\baleLoader.xml
[2010.09.20 18:50:14 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\trailers\baleLoaderWheel_diffuse.dds
[2010.09.20 18:50:14 | 000,699,192 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.1)\data\vehicles\trailers\baleLoader_diffuse.dds
[2010.06.11 09:49:20 | 000,071,008 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\PhysXLoader.dll
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\store_baleLoader.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\store_deutzFrontloaderBalefork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\store_deutzFrontloaderPalletfork.dds
[2010.09.27 17:26:24 | 000,032,896 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\store_deutzFrontloaderShovel.dds
[2010.10.03 22:25:36 | 006,936,663 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.i3d
[2010.12.06 16:22:12 | 000,007,803 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader.xml
[2010.10.01 12:27:36 | 000,696,448 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_diffuse.dds
[2010.09.27 22:34:32 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_normal.dds
[2010.09.28 10:10:08 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzAgrofarmFrontloader_specular.dds
[2010.10.29 17:20:12 | 000,115,296 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.i3d
[2010.09.17 18:11:34 | 000,000,515 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderBalefork.xml
[2010.11.12 11:05:54 | 000,136,285 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.i3d
[2010.09.17 18:11:34 | 000,000,517 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderPalletfork.xml
[2010.10.29 17:20:12 | 000,105,628 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.i3d
[2010.09.01 20:15:06 | 000,000,710 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\steerable\deutz\deutzFrontloaderShovel.xml
[2010.11.17 17:15:42 | 000,615,989 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\trailers\baleLoader.i3d
[2010.11.12 11:06:04 | 000,008,640 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\trailers\baleLoader.xml
[2010.09.20 18:50:14 | 000,174,904 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\trailers\baleLoaderWheel_diffuse.dds
[2010.09.20 18:50:14 | 000,699,192 | ---- | M] () -- \HRY\zalohaLS11 original\Landwirtschafts Simulator 2011(patch2.2)\data\vehicles\trailers\baleLoader_diffuse.dds
[2011.09.23 12:51:35 | 000,047,568 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avwebloader.dll
[2012.01.31 08:56:55 | 000,234,448 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avwebloader.exe
[2011.09.23 12:51:35 | 001,715,152 | ---- | M] () -- \Program Files\Avira\AntiVir Desktop\avwebloadergui.dll
[2007.06.27 19:03:00 | 000,177,448 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2011.04.04 10:47:16 | 000,006,820 | ---- | M] () -- \Program Files\GamersFirst\LIVE!\Content\ajax-loader.gif
[2010.02.15 20:54:20 | 000,071,008 | ---- | M] () -- \Program Files\GIANTS Software\GIANTS_Editor_4.1.7\PhysXLoader.dll
[2010.02.07 23:40:00 | 000,000,543 | ---- | M] () -- \Program Files\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.12.15 19:58:18 | 000,017,056 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.12.15 19:58:20 | 000,018,592 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.12.15 19:58:24 | 000,026,272 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.12.15 19:58:26 | 000,012,960 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.12.15 19:58:28 | 000,017,568 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.12.15 19:58:56 | 000,019,616 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.12.15 19:59:04 | 000,015,008 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.12.15 19:59:06 | 000,019,104 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.12.15 19:59:10 | 000,017,056 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.12.15 19:59:14 | 000,012,448 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.12.15 19:59:16 | 000,016,544 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.12.15 19:59:20 | 000,016,544 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.12.15 19:59:22 | 000,011,936 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.12.15 19:59:24 | 000,013,984 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.12.15 19:59:28 | 000,028,320 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009.05.01 21:42:00 | 000,009,880 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2009.02.19 15:38:08 | 000,004,176 | ---- | M] () -- \Program Files\Google\Google SketchUp 7\Resources\en-US\searching\ajax-loader.gif
[2009.02.19 15:38:12 | 000,000,500 | ---- | M] () -- \Program Files\Google\Google SketchUp 7\Tools\DynamicComponents\ruby\dcloader.rb
[2011.12.20 14:32:00 | 000,634,880 | ---- | M] () -- \Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
[2011.12.20 14:32:00 | 000,000,151 | ---- | M] () -- \Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.ini
[2009.02.19 08:40:54 | 000,245,760 | ---- | M] () -- \Program Files\ImTOO\3GP Video Converter\vcloader.exe
[2009.02.19 08:40:54 | 000,077,824 | ---- | M] () -- \Program Files\ImTOO\3GP Video Converter\xcDownloader.dll
[2011.12.20 19:45:12 | 001,015,128 | ---- | M] () -- \Program Files\IObit\Game Booster 3\Freeware\GB_FreeSoftwareDownloader.exe
[2010.09.23 14:40:22 | 000,214,528 | ---- | M] () -- \Program Files\JDownloader\JDownloader.exe
[2011.02.10 22:52:23 | 000,593,293 | ---- | M] () -- \Program Files\JDownloader\JDownloader.jar
[2010.11.25 19:43:33 | 000,000,105 | ---- | M] () -- \Program Files\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2011.12.19 19:53:05 | 000,007,073 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\UploaderPl.class
[2010.09.23 14:43:06 | 000,032,222 | ---- | M] () -- \Program Files\JDownloader\licenses\jdownloader.license
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2002.09.26 11:30:32 | 000,086,016 | ---- | M] () -- \Program Files\Veo Picture Fun\loader.dat
[2012.04.16 16:01:22 | 000,602,968 | ---- | M] () -- \RECYCLER\S-1-5-21-329068152-1336601894-682003330-1003\Dc1\free-software-downloader.exe
[2004.08.17 15:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2011.07.17 22:46:32 | 000,016,172 | ---- | M] () -- \WINDOWS\Prefetch\IMF_FREESOFTWAREDOWNLOADER.EX-1CB97EA5.pf
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 01:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 01:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[9 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll

========== Files - Unicode (All) ==========
[2012.02.07 17:42:25 | 000,000,000 | ---D | M](C:\Documents and Settings\durman\??) -- C:\Documents and Settings\durman\궠Ȼ
[2010.03.02 18:33:27 | 000,000,000 | ---D | M](C:\Documents and Settings\durman\Dokumenty\STAHOV?N?) -- C:\Documents and Settings\durman\Dokumenty\STAHOV�N�
[2010.03.02 18:33:27 | 000,000,000 | ---D | C](C:\Documents and Settings\durman\Dokumenty\STAHOV?N?) -- C:\Documents and Settings\durman\Dokumenty\STAHOV�N�
(C:\Documents and Settings\durman\??) -- C:\Documents and Settings\durman\궠Ȼ

========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34

< End of report >

screen: Obrázek

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:15
od Durman
Extras.txt - log
______________________

OTL Extras logfile created on: 18.4.2012 16:42:20 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Documents and Settings\durman\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 77,61% Memory free
7,04 Gb Paging File | 6,19 Gb Available in Paging File | 87,86% Paging File free
Paging file location(s): C:\pagefile.sys 4046 10092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698,64 Gb Total Space | 373,37 Gb Free Space | 53,44% Space Free | Partition Type: NTFS
Drive E: | 149,05 Gb Total Space | 110,28 Gb Free Space | 73,99% Space Free | Partition Type: NTFS
Drive F: | 0,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 14,90 Gb Total Space | 14,90 Gb Free Space | 100,00% Space Free | Partition Type: FAT32

Computer Name: DURMAN | User Name: durman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Procházet v &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"56890:TCP" = 56890:TCP:*:Enabled:Pando Media Booster
"56890:UDP" = 56890:UDP:*:Enabled:Pando Media Booster
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"10857:TCP" = 10857:TCP:*:Enabled:BitComet 10857 TCP
"10857:UDP" = 10857:UDP:*:Enabled:BitComet 10857 UDP
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"54010:TCP" = 54010:TCP:*:Enabled:Samsung AllShare SlideShow Service
"57895:TCP" = 57895:TCP:*:Enabled:Pando Media Booster
"57895:UDP" = 57895:UDP:*:Enabled:Pando Media Booster
"56890:TCP" = 56890:TCP:*:Enabled:Pando Media Booster
"56890:UDP" = 56890:UDP:*:Enabled:Pando Media Booster
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe -- (www.BitComet.com)
"C:\HRY\Prototype\prototypef.exe" = C:\HRY\Prototype\prototypef.exe:*:Enabled:Prototype(TM) -- (Activision)
"C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe" = C:\HRY\Landwirtschafts Simulator 2011\FarmingSimulator2011.exe:*:Enabled:Landwirtschafts Simulator 2011 -- (GIANTS Software GmbH)
"C:\HRY\Landwirtschafts Simulator 2011\game.exe" = C:\HRY\Landwirtschafts Simulator 2011\game.exe:*:Enabled:Landwirtschafts Simulator 2011 -- (GIANTS Software GmbH)
"C:\HRY\Battlefield_2\BFBC2Updater.exe" = C:\HRY\Battlefield_2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"C:\HRY\EA GAMES\Battlefield 2\BF2.exe" = C:\HRY\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2 -- ()
"C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\durman\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe" = C:\Program Files\Capcom\Dead Rising 2 Off The Record\deadrising2otr.exe:*:Enabled:Dead Rising 2: OTR -- (CAPCOM CO., LTD.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\HRY\APB Reloaded\Binaries\APB.exe" = C:\HRY\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe -- (K2 Network, Inc.)
"C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe" = C:\HRY\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe -- (Vivox Inc.)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0101386E-6E51-4544-A66E-26FA06FF1776}" = Heroes Over Europe
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp version 0.99.8
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{156C3E4C-4C12-4BD3-9CD4-F2F858A2458B}" = GRID
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1ADE23D7-7A1E-4AEC-BA5D-EB8A01BED943}" = DeepBurner v1.8.0.224
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2282C742-8E14-4E71-8329-5253E51B2834}" = Passware Kit Basic Demo 10.3
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
"{2A30052B-831C-41D3-8044-3C0388066350}" = Seagate Manager Installer
"{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1
"{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3688960A-BB04-4F2C-9AB1-620F169446A9}_is1" = Ulož.to File Manager verze 1.0
"{39586F4F-758D-4A92-A5DF-33E9DB9C09D9}" = CA eTrust PestPatrol
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{4132214B-EF9A-4B9F-86B9-E2D2548D4F2E}" = Models
"{43430FA2-C625-49DA-8882-351000008300}" = Dead Rising 2: OTR
"{4486BCC3-F39E-4BD6-8CC9-81D583D90529}" = Models
"{47B13DCA-D0DC-469A-9AC8-46B8D91949D4}" = Models
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4F223042-9EC0-4CD0-994F-75C7E2569B6F}" = Models
"{50D4CB89-AF34-4978-96DC-C3034062E901}" = Battlefield 2: Special Forces
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58ABF83F-C5EA-4C21-A1D8-A0AF1E4D026C}_is1" = Real Kanojo
"{5D841912-A8D8-4828-A3FA-4EA543E8F753}" = HTC Home 2.1
"{60D32CDC-E3BE-4578-BA10-29322307CDDC}" = Logitech Gaming Software 5.10
"{6812DB48-0DCF-4D31-A78C-EE715D05FB65}" = Models
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73790599-A2F1-4E99-B495-3B47ACA44BB3}" = Models
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"{7A3FFA58-876F-489C-B6CF-0503916224DF}" = HTC Sync
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7EBE7312-888F-4CFB-BD60-894D8B8B2520}" = PowerArchiver 2010 Czech
"{7FD32060-3927-4113-986D-A22B0CD2A9E1}" = USB Vibration Joystick
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{847CAE64-4CD2-4B2D-AF00-978FF5431029}" = Nero 7 Ultra Edition
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype(TM)
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0F64BAC-9B80-4F69-851A-7849ABBCBF3F}" = Models
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Czech
"{B0C30E93-D3D9-4F04-A2AC-54749B573275}" = Command & Conquer 3
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.1.13.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BCE46757-7674-4416-BEDB-68205A60409E}" = Canon CanoScan Toolbox 4.1
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CDC62D96-47E2-401A-B619-0EAE267BCBF5}" = Models
"{CFADE4AF-C0CF-4A04-A776-741318F1658F}" = Content Transfer
"{D9313DEC-F4B0-430A-8565-63F8450D2D42}" = ZoneAlarm Security
"{DBB7F606-0C13-4182-AD7F-427A4773580E}" = VibrateGameDeviceDriver
"{DE70A648-54BA-4871-AAAD-9043594AEC7A}_is1" = NTLEA 0.86 beta
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = jetAudio Plus VX
"{E1C256F5-58C6-44E9-939A-E1189C8126E2}" = Google SketchUp Pro 7
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E5343B27-55DF-40BD-9FCF-A643C1331E8A}" = Acronis True Image Home
"{E8DBC0AE-4A2D-4859-84E9-C50C3EBA4DB0}" = ZoneAlarm Firewall
"{E96FF910-1BC9-4EE5-BC12-0A30D4E20F37}" = NWZ-E440 WALKMAN Guide
"{EDA827F5-C014-4161-918D-3EEF16A2B167}" = Korea: Forgotten Conflict
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F81A8AB8-512D-45E3-AEE5-E15F5F8D4C74}" = Models
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"68D2ACE68EAC27B8073EBF78EA6ED61C4FCCD47D" = Balíček ovladače systému Windows - HTC Corporation Net (06/30/2011 1.0.0.5)
"6CECB889862D19ABAAE00BE10351BC0E1541CAA2" = Balíček ovladače systému Windows - HTC (htcnprot) NetTrans (06/25/2010 1.0.0.1)
"7-Zip" = 7-Zip 4.65
"Abloadtool" = Abloadtool
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Alter Ego_is1" = Alter Ego
"Alternativa_is1" = Alternativa
"AmazingMIDI" = AmazingMIDI
"APB Reloaded" = APB Reloaded
"Avira AntiVir Desktop" = Avira Free Antivirus
"BitComet" = BitComet 1.20
"CCleaner" = CCleaner
"Combined Community Codec Pack" = Combined Community Codec Pack 2006-07-28 (Remove Only)
"D256C9A5FA9BC0EACBFFAA415529D56BDDF81A50" = Balíček ovladače systému Windows - HTC Corporation WPD (07/29/2011 1.0.0.0)
"D6FCA11A1F97525F33AB2D78EA32B8C73F248C92" = Balíček ovladače systému Windows - HTC, Corporation (HTCAND32) USB (08/10/2011 2.0.0007.00006)
"DDS Converter 2.1" = DDS Converter 2.1
"Debut" = Debut Video Capture Software
"DVDFab Platinum_is1" = DVDFab Platinum 3.0.7.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Printer and Utilities" = EPSON Printer Software
"Eset NOD32 v3.0.642 FiX1.2 by TemDono_is1" = NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up
"FarmingSimulator2011DE_is1" = Landwirtschafts Simulator 2011
"Fraps" = Fraps (remove only)
"Game Booster_is1" = Game Booster 3
"GamersFirst LIVE!" = GamersFirst LIVE!
"German Truck Simulator" = German Truck Simulator 1.00
"GFWL_{43430FA2-C625-49DA-8882-351000008300}" = Dead Rising 2: OTR
"giants_editor_4.1.7_is1" = GIANTS Editor 4.1.7
"GIF Animator" = Microsoft GIF Animator
"GLVIEW3" = OpenGL Extensions Viewer 3.0
"HashTab" = HashTab 3.0.0
"ImTOO 3GP Video Converter" = ImTOO 3GP Video Converter
"ImTOO DVD to MP4 Converter" = ImTOO DVD to MP4 Converter
"InstallShield_{2A30052B-831C-41D3-8044-3C0388066350}" = Seagate Manager Installer
"InstallShield_{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype(TM)
"Intelore - RAR Password Recovery" = RAR Password Recovery v1.1 RC16 (remove only)
"IPCameraDSFilter" = IP Camera DS Filter
"IrfanView" = IrfanView (remove only)
"JAIELangPack" = Japanese Language Support
"JDownloader" = JDownloader
"Jigs@w Puzzle Nature Edition" = Jigs@w Puzzle Nature Edition
"Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Mozilla Firefox 11.0 (x86 cs)" = Mozilla Firefox 11.0 (x86 cs)
"MpcStar" = MpcStar 4.8
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"PowerISO" = PowerISO
"Protected Folder_is1" = Protected Folder
"PunkBusterSvc" = PunkBuster Services
"sp6" = Logitech SetPoint 6.32
"SpeedFan" = SpeedFan (remove only)
"SpywareBlaster_is1" = SpywareBlaster 4.6
"SystemRequirementsLab" = System Requirements Lab
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 7" = TeamViewer 7
"TmNationsForever_is1" = TmNationsForever
"Totalcmd" = Total Commander (Remove or Repair)
"Veo Picture Fun" = Veo Picture Fun
"VirtuaGirlHD 1.0.4.755 - 799-93-136-60 models" = VirtuaGirlHD 1.0.4.755 - 799-93-136-60 models
"VLC media player" = VLC media player 1.0.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinRAR archiver" = WinRAR 4.01 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"yowindow" = YoWindow
"ZoneAlarm Free" = ZoneAlarm Free
"ZoneAlarm LTD Toolbar" = ZoneAlarm LTD Toolbar

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Facebook Plug-In" = Facebook Plug-In
"szn-software-postak" = Seznam Pošťák (Pouze já.)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 14.8.2011 17:11:59 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
ntdll.dll, verze 5.1.2600.5512, adresa chyby 0x00010193.

Error - 15.8.2011 11:31:10 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace minibrowser.exe, verze 1.0.0.1, chybující modul
embd3260.dll, verze 6.0.13.68, adresa chyby 0x0002f11d.

Error - 15.8.2011 15:17:17 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
ntdll.dll, verze 5.1.2600.5512, adresa chyby 0x00011746.

Error - 17.8.2011 10:57:29 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace minibrowser.exe, verze 1.0.0.1, chybující modul
embd3260.dll, verze 6.0.13.68, adresa chyby 0x0002f11d.

Error - 19.8.2011 11:03:21 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace ascinit.exe, verze 4.1.13.36, chybující modul kernel32.dll,
verze 5.1.2600.5512, adresa chyby 0x00012aeb.

Error - 20.8.2011 5:31:47 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace minibrowser.exe, verze 1.0.0.1, chybující modul
embd3260.dll, verze 6.0.13.68, adresa chyby 0x0002f11d.

Error - 20.8.2011 6:16:22 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 6.0.2900.5512, chybující modul
embd3260.dll, verze 6.0.13.68, adresa chyby 0x0002f11d.

Error - 8.9.2011 17:44:32 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
rpcrt4.dll, verze 5.1.2600.5512, adresa chyby 0x00006665.

Error - 22.9.2011 12:44:26 | Computer Name = MOZART | Source = Application Error | ID = 1000
Description = Chybující aplikace game.exe, verze 4.1.7.1, chybující modul game.exe,
verze 4.1.7.1, adresa chyby 0x00092fb6.

Error - 22.9.2011 13:27:13 | Computer Name = MOZART | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.


[ OSession Events ]
Error - 5.10.2011 9:28:28 | Computer Name = MOZART | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 9
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 17.4.2012 10:38:45 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7031
Description = Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat
službu.

Error - 17.4.2012 11:13:45 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Eset Nod32 Boot.

Error - 17.4.2012 11:13:45 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7000
Description = Služba Eset Nod32 Boot neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 18.4.2012 9:52:14 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Eset Nod32 Boot.

Error - 18.4.2012 9:52:14 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7000
Description = Služba Eset Nod32 Boot neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 18.4.2012 9:52:46 | Computer Name = DURMAN | Source = DCOM | ID = 10010
Description = Server {4EB61BAC-A3B6-4760-9581-655041EF4D69} se v daném časovém limitu
neregistroval u služby DCOM.

Error - 18.4.2012 10:09:13 | Computer Name = DURMAN | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 18.4.2012 10:16:34 | Computer Name = DURMAN | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 18.4.2012 10:29:18 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Eset Nod32 Boot.

Error - 18.4.2012 10:29:18 | Computer Name = DURMAN | Source = Service Control Manager | ID = 7000
Description = Služba Eset Nod32 Boot neuspěla při spuštění v důsledku následující
chyby: %%1053


< End of report >

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 16:48
od vyosek
:arrow: Doporucuji odinstalovat Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam :arrow: Ukoncete rezidentni stit Aviry, at nam nekeca do cinnosti co bude OTL ted delat. Pripadne mala napoveda zde http://www.bleepingcomputer.com/forums/topic114351.html

:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :commands
[clearallrestorepoints]
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

:otl
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\durman\LOCALS~1\Temp\ALSysIO.sys -- (ALSysIO)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aw43qibz)
- HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://webalta.ru
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://webalta.ru
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - No CLSID value found
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes,DefaultScope = {0D7562AE-8EF6-416d-A838-AB665251703A}
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=QR&apn_dtid=&apn_uid=8742A166-0B39-4EC9-BDA1-619DF5A269EE&apn_sauid=82EFFB33-C464-4C7B-BC6F-3DE45D657F3E
IE - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\SearchScopes\{4179ED28-0094-45eb-B743-1290A1B5FAFF}: "URL" = http://webalta.ru/poisk?q={searchTerms}
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..keyword.URL: "http://start.facemoods.com/results.php?f=5&a=desktop&q="
FF - prefs.js..network.proxy.type: 4
[2011.08.10 00:21:07 | 000,000,000 | ---D | M] (Разпознаване на устройство Logitech) -- C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{9AA46F4F-4DC7-4C06-97AF-5035170634FE}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\{EA614400-E918-4741-9A97-7A972FF7C30B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\DEVICEDETECTION@LOGITECH.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\FOXYPROXY@ERIC.H.JUNG
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\NOIAFOXOPTION@DAVIDVINCENT.TLD.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DURMAN\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\6VHFYH3G.DEFAULT\EXTENSIONS\TOGGLEPERSONA@DAVIDVINCENT.TLD.XPI
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O3 - HKU\S-1-5-21-329068152-1336601894-682003330-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
File not found -- C:\Documents and Settings\durman\Plocha\CAWTY3WP.
[2009.01.27 22:24:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.11.18 05:10:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.04.16 16:04:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\durman\Data aplikací\IObit
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\3c7acda88955ce3675d2c59997d8edca\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\3c7acda88955ce3675d2c59997d8edca\*.tmp -> ]
[9 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[2012.04.18 16:28:56 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2012.04.18 16:46:10 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34

:services
gupdate
gupdatem

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 5"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent]

:files
C:\Program Files\IObit
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Prosím o kontrolu (zpomalené PC)

Napsal: 18 dub 2012 17:04
od Durman
Restart probehl. (SpyBoth mam rad, takze si ho zrejme necham, ale diky za info)
jinak co ze to Avira nasla? muzu to smazat?

All processes killed
========== COMMANDS ==========
Restore points cleared and new OTL Restore Point set!
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes

User: durman
->Temp folder emptied: 60946620 bytes
->Temporary Internet Files folder emptied: 994413 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 54333250 bytes
->Flash cache emptied: 719 bytes

User: LocalService
->Temp folder emptied: 1054328 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 988344 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2602601 bytes
%systemroot%\System32 .tmp files removed: 4206816 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1259520 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 86138639 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 1156009 bytes
RecycleBin emptied: 8433243 bytes

Total Files Cleaned = 212,00 mb


[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: durman
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

========== OTL ==========
Service ALSysIO stopped successfully!
Service ALSysIO deleted successfully!
File C:\DOCUME~1\durman\LOCALS~1\Temp\ALSysIO.sys not found.
Error: No service named aw43qibz was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\aw43qibz deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-329068152-1336601894-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}\ not found.
HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{4179ED28-0094-45eb-B743-1290A1B5FAFF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4179ED28-0094-45eb-B743-1290A1B5FAFF}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "http://start.facemoods.com/results.php?f=5&a=desktop&q=" removed from keyword.URL
Prefs.js: 4 removed from network.proxy.type
C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com\plugins folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com\META-INF folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com\chrome folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\extensions\DeviceDetection@logitech.com folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{53707962-6F74-2D53-2644-206D7942484F}\ deleted successfully.
C:\Program Files\Spybot - Search & Destroy\SDHelper.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-329068152-1336601894-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ deleted successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET NOD32 Antivirus\Charon folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET NOD32 Antivirus folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET folder moved successfully.
Folder move failed. C:\Documents and Settings\All Users\Data aplikací\IObit\Protected Folder scheduled to be moved on reboot.
C:\Documents and Settings\All Users\Data aplikací\IObit\IObit Security 360 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Game Booster 3\Opt folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Game Booster 3\BackLnk folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Game Booster 3 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare folder moved successfully.
Folder move failed. C:\Documents and Settings\All Users\Data aplikací\IObit scheduled to be moved on reboot.
C:\Documents and Settings\durman\Data aplikací\IObit\IObit Uninstaller\Log folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\IObit Uninstaller folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\IObit Malware Fighter folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\InternetBooster folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V5\Toolbox folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V5\Log folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V5\Boottime folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V5\Backup folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V4\Toolbox folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V4\PMonitor folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V4\Backup folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare\Backup\Registry folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare\Backup folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit\Advanced SystemCare folder moved successfully.
C:\Documents and Settings\durman\Data aplikací\IObit folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP128.tmp folder deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\3c7acda88955ce3675d2c59997d8edca\BIT60.tmp deleted successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34 deleted successfully.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 5 not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent\ deleted successfully.
========== FILES ==========
C:\Program Files\IObit\Protected Folder\Language folder moved successfully.
C:\Program Files\IObit\Protected Folder\help\images folder moved successfully.
C:\Program Files\IObit\Protected Folder\help folder moved successfully.
Folder move failed. C:\Program Files\IObit\Protected Folder scheduled to be moved on reboot.
C:\Program Files\IObit\IObit Malware Fighter\Quarantine Zone folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log\scan folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log\realtime folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter\log folder moved successfully.
C:\Program Files\IObit\IObit Malware Fighter folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Update folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Tweak folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Scroll folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Performance folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\News folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Defrag folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\button folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Border folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default\Boost folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin\Default folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Skin folder moved successfully.
C:\Program Files\IObit\Game Booster 3\LatestNews folder moved successfully.
C:\Program Files\IObit\Game Booster 3\LatestGames folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Language folder moved successfully.
C:\Program Files\IObit\Game Booster 3\Freeware folder moved successfully.
C:\Program Files\IObit\Game Booster 3 folder moved successfully.
Folder move failed. C:\Program Files\IObit scheduled to be moved on reboot.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.

OTL by OldTimer - Version 3.2.40.0 log created on 04182012_175618

Files\Folders moved on Reboot...
C:\Documents and Settings\durman\Local Settings\Temp\WCESLog.log moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\startupCache\startupCache.4.little moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\durman\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\6vhfyh3g.default\urlclassifier3.sqlite moved successfully.
Folder move failed. C:\Documents and Settings\All Users\Data aplikací\IObit\Protected Folder scheduled to be moved on reboot.
Folder move failed. C:\Documents and Settings\All Users\Data aplikací\IObit\Protected Folder scheduled to be moved on reboot.
Folder move failed. C:\Documents and Settings\All Users\Data aplikací\IObit scheduled to be moved on reboot.
Folder move failed. C:\Program Files\IObit\Protected Folder scheduled to be moved on reboot.
Folder move failed. C:\Program Files\IObit\Protected Folder scheduled to be moved on reboot.
Folder move failed. C:\Program Files\IObit scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz