VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosim o prev.kontrolu PC

https://forum.viry.cz:443/viewtopic.php?t=123605

Stránka 1 z 1

prosim o prev.kontrolu PC

Napsal: 13 srp 2012 10:16
od antivirak
Logfile of random's system information tool 1.09 (written by random/random)
Run by Tonik at 2012-08-13 11:15:57
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 103 GB (53%) free of 194 GB
Total RAM: 1023 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:16:05, on 13.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\VIA\RAID\vialogsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Tonik\Plocha\RSIT.exe
C:\Program Files\trend micro\Tonik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [VIARaidUtl] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe
O4 - Global Startup: ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Aktualizátor aplikace Scrybe (ScrybeUpdater) - Synaptics, Inc. - C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: VRAID Log Service - Unknown owner - C:\Program Files\VIA\RAID\vialogsv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 7346 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{900CBAD6-5DF5-4C07-8934-209E90828A2A}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default

prefs.js - "browser.startup.homepage" - "www.google.cz"
prefs.js - "extensions.enabledItems" - "{c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1, {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.270 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0]
"Description"=Exent® AOD Gecko Plugin
"Path"=C:\Program Files\Free Ride Games\npExentCtl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
npwachk.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npDivxPlayerPlugin.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
np_gp.dll
nsIDivxPlayerPlugin.xpt
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\
{635abd67-4fe9-1b23-4f01-e679fa7484c1}
{800b5000-a755-47e1-992b-48a1c1357f07}

C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\
daemon-search.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-16.xml
icqplugin-17.xml
icqplugin-18.xml
icqplugin-19.xml
icqplugin-2.xml
icqplugin-20.xml
icqplugin-21.xml
icqplugin-22.xml
icqplugin-23.xml
icqplugin-24.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-07-03 1160792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-07-05 4018888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-07-03 1160792]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VIARaidUtl"=C:\Program Files\VIA\RAID\raid_tool.exe [2009-02-19 4918936]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-05-25 13895272]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2011-04-22 247728]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HotSync Manager.lnk - C:\Program Files\palmOne\Hotsync.exe
ZoneAlarm Pro.lnk - C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\BitLord\BitLord.exe"="C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe"="C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.VP31"=vp31vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2012-08-13 11:14:13 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2012-08-13 11:16:01 ----D---- C:\Program Files\trend micro
2012-08-13 11:15:08 ----D---- C:\WINDOWS\Prefetch
2012-08-13 11:07:05 ----D---- C:\WINDOWS\temp
2012-08-13 09:59:55 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-13 09:38:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2012-08-13 09:37:18 ----D---- C:\Documents and Settings\Tonik\Data aplikací\ICQ
2012-08-12 21:44:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-12 20:24:26 ----D---- C:\WINDOWS\Internet Logs
2012-08-04 13:23:14 ----D---- C:\WINDOWS\Minidump
2012-08-04 13:23:08 ----AD---- C:\WINDOWS
2012-08-03 17:27:18 ----D---- C:\WINDOWS\system32
2012-08-03 17:27:05 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-07-25 20:39:04 ----HD---- C:\WINDOWS\inf
2012-07-23 12:16:10 ----SD---- C:\WINDOWS\Tasks
2012-07-20 15:38:03 ----SHD---- C:\WINDOWS\Installer
2012-07-20 15:38:03 ----D---- C:\Config.Msi
2012-07-20 15:37:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-07-19 19:51:42 ----RD---- C:\Program Files
2012-07-18 18:50:20 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-07-18 15:05:00 ----D---- C:\Program Files\Mozilla Firefox
2012-07-16 09:34:20 ----D---- C:\Program Files\Google
2012-07-15 15:18:43 ----D---- C:\WINDOWS\Debug
2012-07-14 14:47:38 ----D---- C:\Program Files\WinZip

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-09-03 115680]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-11-13 717296]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\System32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 viamraid;viamraid; C:\WINDOWS\system32\drivers\viamraid.sys [2008-07-09 117248]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2009-05-05 13976]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-07-03 25256]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-07-03 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-07-03 721000]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-07-03 353688]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-07-03 54232]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-05-23 218688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2008-07-21 24392]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-02-06 93336]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-09-03 54368]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-07-03 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-07-03 97608]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-27 279712]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-27 25888]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-12-15 1368000]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2002-11-28 15360]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-05-25 12753664]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S1 MpKsl0f94dd75;MpKsl0f94dd75; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C01F4EFA-F4A5-4664-9BAD-BD7ABBE6A2A5}\MpKsl0f94dd75.sys []
S2 X4HSEx;X4HSEx; \??\C:\Program Files\Free Ride Games\X4HSEx.Sys []
S3 aawcabm6;aawcabm6; C:\WINDOWS\system32\drivers\aawcabm6.sys []
S3 apditznx;apditznx; C:\WINDOWS\system32\drivers\apditznx.sys []
S3 AVerE506;AVerE506 service; C:\WINDOWS\system32\DRIVERS\AVerE506.sys [2005-10-26 519680]
S3 b57w2k;BCM5701 Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2001-10-24 97120]
S3 catchme;catchme; \??\C:\DOCUME~1\Petra\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\System32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PalmUSBD;PalmUSBD; C:\WINDOWS\system32\drivers\PalmUSBD.sys [2012-05-26 16694]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-09-03 47360]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\System32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-11-02 76672]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-11-02 82560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-07-03 44808]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-05-25 154728]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-07-05 3048136]
R2 VRAID Log Service;VRAID Log Service; C:\Program Files\VIA\RAID\vialogsv.exe [2008-09-24 52888]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-11 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]
S2 ScrybeUpdater;Aktualizátor aplikace Scrybe; C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe [2011-01-14 1294848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-05-03 158856]
S2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592]
S2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2003-06-10 894024]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-03 250056]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-11 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-18 113120]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]

-----------------EOF-----------------

Re: prosim o prev.kontrolu PC

Napsal: 13 srp 2012 11:25
od Márty84
Zdravim :)

:!: Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Re: prosim o prev.kontrolu PC

Napsal: 13 srp 2012 12:09
od Márty84
:???: Jake pouzivate zabezpeceni? V logu vidim Avast, ten je jasny. Ale dale tam jsou zbytky Esetu, Zone Alarmu a taky Microsoftu. Vyuzivate neco z toho?

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 10:07
od antivirak
zdravim,pouzivam jen avast.posilam log.

OTL logfile created on: 15.8.2012 9:39:00 - Run 1
OTL by OldTimer - Version 3.2.57.0 Folder = C:\Documents and Settings\Tonik\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1023,48 Mb Total Physical Memory | 532,00 Mb Available Physical Memory | 51,98% Memory free
1,65 Gb Paging File | 1,29 Gb Available in Paging File | 78,13% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 189,91 Gb Total Space | 100,47 Gb Free Space | 52,91% Space Free | Partition Type: NTFS
Drive E: | 232,88 Gb Total Space | 4,01 Gb Free Space | 1,72% Space Free | Partition Type: NTFS

Computer Name: TONDA-MP8095ZA8 | User Name: Tonik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.08.14 13:05:37 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonik\Plocha\OTL.exe
PRC - [2012.07.18 15:02:12 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.07.05 18:41:46 | 003,048,136 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012.07.03 18:21:30 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.07.03 18:21:29 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.05.25 08:09:21 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.04.22 14:21:10 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011.01.14 09:56:36 | 001,294,848 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
PRC - [2009.02.19 17:42:52 | 004,918,936 | ---- | M] () -- C:\Program Files\VIA\RAID\raid_tool.exe
PRC - [2008.09.24 16:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2012.08.15 08:53:23 | 001,795,584 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12081500\algo.dll
MOD - [2012.08.14 21:06:46 | 001,793,536 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12081401\algo.dll
MOD - [2012.07.18 15:02:06 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.07.29 01:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2009.02.19 17:42:52 | 004,918,936 | ---- | M] () -- C:\Program Files\VIA\RAID\raid_tool.exe
MOD - [2009.02.06 11:50:50 | 000,196,608 | ---- | M] () -- C:\Program Files\VIA\RAID\drvInterface.dll
MOD - [2009.02.05 10:24:14 | 000,581,632 | ---- | M] () -- C:\Program Files\VIA\RAID\Language.dll
MOD - [2008.09.24 16:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe


========== Win32 Services (SafeList) ==========

SRV - [2012.08.14 23:24:39 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.07.18 15:02:07 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.07.05 18:41:46 | 003,048,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012.07.03 18:21:29 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.05.03 08:31:10 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011.05.25 08:09:21 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.04.22 14:21:10 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011.01.14 09:56:36 | 001,294,848 | ---- | M] (Synaptics, Inc.) [Auto | Running] -- C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe -- (ScrybeUpdater)
SRV - [2009.12.17 17:36:24 | 000,067,360 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2008.09.24 16:50:46 | 000,052,888 | ---- | M] () [Auto | Running] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
SRV - [2003.06.10 00:02:12 | 000,894,024 | ---- | M] (Zone Labs Inc.) [Auto | Stopped] -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- (vsmon)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\Free Ride Games\X4HSEx.Sys -- (X4HSEx)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\wdf01000.sys -- (Wdf01000)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C01F4EFA-F4A5-4664-9BAD-BD7ABBE6A2A5}\MpKsl0f94dd75.sys -- (MpKsl0f94dd75)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleNT.sys -- (EagleNT)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Petra\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | System | Stopped] -- -- (Beep)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aqd5mr0n)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aokeu2tp)
DRV - [2012.07.03 18:21:54 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.07.03 18:21:53 | 000,721,000 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.07.03 18:21:53 | 000,353,688 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.07.03 18:21:53 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.07.03 18:21:53 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.07.03 18:21:53 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.07.03 18:21:52 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012.05.26 21:12:02 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2011.11.13 17:13:43 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2011.05.23 09:28:31 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2009.07.27 18:57:47 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.07.27 18:57:47 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009.05.05 10:58:30 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32)
DRV - [2009.03.25 15:29:52 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2009.02.06 14:24:24 | 000,093,336 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.02.06 14:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.02.06 14:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.04.13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2005.10.26 22:39:30 | 000,519,680 | ---- | M] (AVerMedia Technologies, Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AVerE506.sys -- (AVerE506)
DRV - [2005.03.03 19:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.02.23 17:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004.12.03 12:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2004.09.03 19:23:10 | 000,115,680 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.09.03 19:19:07 | 000,054,368 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139)
DRV - [2004.07.19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2003.07.02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1)
DRV - [2003.06.10 00:02:00 | 000,188,240 | ---- | M] (Zone Labs Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2002.11.28 16:18:04 | 000,015,360 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2001.10.24 12:46:48 | 000,097,120 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms}


IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes,DefaultScope = {B6D6E204-6E4E-43C1-8C30-3EBDADC5186E}
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{B6D6E204-6E4E-43C1-8C30-3EBDADC5186E}: "URL" = http://www.google.cz/search?q={searchTe ... {startPage}
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{C6EE2603-C531-4C52-BB1F-2757F74C8AC4}: "URL" = http://websearch.ask.com/redirect?clien ... F40615666D
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms}
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.google.cz"
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - user.js..browser.search.defaultenginename: "ICQ Search"
FF - user.js..browser.startup.homepage: "www.google.cz"
FF - user.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1
FF - user.js..extensions.enabledItems: jqs@sun.com:1.0
FF - user.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - user.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - user.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - user.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - user.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0: C:\Program Files\Free Ride Games\npExentCtl.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.01.09 13:45:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.07.16 09:26:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.07.18 15:02:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.03 16:43:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009.08.03 19:41:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Extensions
[2008.12.20 02:06:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Extensions\{6334D996-EA3E-4a0e-AA8D-15BA56B37241}
[2009.08.03 19:41:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2012.02.01 13:33:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions
[2011.08.09 07:43:41 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012.02.01 13:33:45 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.05.23 09:23:03 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\daemon-search.xml
[2012.08.13 10:38:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-1.xml
[2008.11.15 22:00:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-10.xml
[2008.12.18 01:13:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-11.xml
[2009.02.05 20:53:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-12.xml
[2009.02.11 21:24:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-13.xml
[2009.03.06 01:57:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-14.xml
[2009.03.30 20:58:39 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-15.xml
[2009.04.22 23:14:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-16.xml
[2009.04.29 20:25:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-17.xml
[2009.06.15 20:31:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-18.xml
[2009.07.27 18:27:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-19.xml
[2008.09.26 20:18:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-2.xml
[2009.08.05 07:33:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-20.xml
[2009.09.13 16:32:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-21.xml
[2010.06.24 18:50:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-22.xml
[2010.06.24 18:50:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-23.xml
[2010.07.02 09:23:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-24.xml
[2008.09.28 19:48:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-3.xml
[2008.10.01 18:54:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-4.xml
[2008.10.01 20:24:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-5.xml
[2008.10.14 00:12:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-6.xml
[2008.10.14 00:16:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-7.xml
[2008.10.14 00:27:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-8.xml
[2008.10.16 11:21:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-9.xml
[2011.03.30 16:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin.xml
[2009.10.01 21:19:08 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\sweetim.xml
[2012.04.10 10:36:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.07.20 15:37:52 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.07.18 15:02:13 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.02.02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.14 00:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2011.06.03 16:43:17 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.06.03 16:43:17 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.07.25 21:49:15 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011.06.03 16:43:17 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.06.03 16:43:17 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.06.03 16:43:17 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: ICQ Search (Enabled)
CHR - default_search_provider: search_url = http://search.icq.com/search/results/?q ... cq-fx-plug
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.60\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.60\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll
CHR - plugin: Skype Click to Call (Enabled) = C:\Documents and Settings\Tonik\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.0.0.10297_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: getPlusPlus for Adobe 16260 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np_gp.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Tonik\Local Settings\Data aplikac\u00ED\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: YouTube = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1456_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.1.0.10441_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.05.28 10:22:55 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [VIARaidUtl] C:\Program Files\VIA\RAID\raid_tool.exe ()
O4 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-21-1085031214-1425521274-839522115-1006..\Run: [Exetender] "C:\Program Files\Free Ride Games\GPlayer.exe" /runonstartup File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe (PalmSource, Inc)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe (Zone Labs Inc.)
O4 - Startup: C:\Documents and Settings\Petra\Nabídka Start\Programy\Po spuštění\palmOne Registration.lnk = C:\Program Files\palmOne\register.exe (palmOne/Leader Technologies)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1085031214-1425521274-839522115-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html File not found
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html File not found
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3908CAD4-0EC5-42B2-B5C5-E284901556EB}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: VIDC.VP31 - vp31vfw.dll File not found
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012.08.15 09:43:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2012.08.14 13:05:33 | 000,596,992 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tonik\Plocha\OTL.exe
[2012.08.13 11:14:13 | 000,000,000 | ---D | C] -- C:\rsit
[2012.07.23 12:35:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tonik\Dokumenty\Downloads
[2008.09.03 22:47:24 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Tonik\Data aplikací\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2012.08.15 09:45:16 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.08.15 09:37:13 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012.08.15 09:36:52 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.08.15 09:36:40 | 000,000,335 | -H-- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2012.08.15 09:36:00 | 000,000,934 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.08.15 09:35:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.08.14 23:24:42 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.08.14 23:24:33 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.08.14 23:24:33 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.08.14 21:56:00 | 000,000,938 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.08.14 17:58:01 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.08.14 13:05:37 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tonik\Plocha\OTL.exe
[2012.08.14 12:53:15 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.08.14 12:52:47 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{900CBAD6-5DF5-4C07-8934-209E90828A2A}.job
[2012.08.13 11:13:52 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Tonik\Plocha\RSIT.exe
[2012.08.06 11:05:13 | 000,159,232 | ---- | M] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.08.04 13:23:08 | 114,798,592 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP

========== Files Created - No Company Name ==========

[2012.08.14 13:12:29 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.08.13 11:13:49 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\Tonik\Plocha\RSIT.exe
[2012.05.28 10:03:13 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.05.28 10:03:13 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.05.28 10:03:13 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.05.28 10:03:13 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.05.28 10:03:13 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.05.26 21:16:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2012.05.24 20:54:37 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2012.02.15 17:39:41 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.12.01 20:44:50 | 000,000,064 | ---- | C] () -- C:\WINDOWS\GPlrLanc.dat
[2011.07.20 10:32:48 | 000,273,344 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.07.20 10:32:47 | 000,273,344 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.07.20 10:32:47 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.07.20 10:31:48 | 002,123,582 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2010.11.07 14:23:09 | 000,000,848 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\SRDownloader.nast
[2010.11.07 14:22:13 | 000,000,045 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\SRDownloader.err
[2008.09.03 22:47:24 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\ezpinst.exe
[2008.09.03 22:47:24 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\pcouffin.cat
[2008.09.03 22:47:24 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\pcouffin.inf
[2008.07.20 17:46:46 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2008.07.15 00:03:19 | 000,013,620 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\jeti.lib
[2008.07.15 00:03:19 | 000,012,259 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\buhucefacu.bat
[2008.07.15 00:03:18 | 000,018,943 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\irysy.bin
[2008.07.15 00:03:18 | 000,017,751 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\hafiw.exe
[2008.07.15 00:03:18 | 000,013,154 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\ykypija.bin
[2008.07.15 00:03:18 | 000,012,277 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\ebeto.com
[2008.07.14 23:42:35 | 000,018,764 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\kipi.bin
[2008.07.14 23:42:35 | 000,017,893 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\ibogyryz.reg
[2008.07.14 23:42:35 | 000,017,355 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\yjejel.reg
[2008.07.14 23:42:35 | 000,015,045 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\udeqela._sy
[2008.07.14 23:42:35 | 000,014,640 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\lyrokuwop.dll
[2008.07.14 23:42:35 | 000,013,910 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\efocerase.reg
[2008.07.14 23:42:35 | 000,013,706 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\udokywiw.exe
[2008.07.14 23:42:35 | 000,013,158 | ---- | C] () -- C:\Documents and Settings\Tonik\Data aplikací\visunazal.lib
[2008.07.14 23:42:35 | 000,012,939 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\unylit.exe
[2008.06.25 00:51:09 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2008.06.24 23:31:16 | 000,159,232 | ---- | C] () -- C:\Documents and Settings\Tonik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 10:08
od antivirak
========== LOP Check ==========

[2011.12.16 19:26:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AdventureChronicles1
[2010.12.24 17:19:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alawar Stargaze
[2011.12.22 19:59:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2011.05.06 08:39:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.12.25 18:13:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avanquest Software
[2011.11.14 21:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AWEM
[2012.02.18 19:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Big Fish Games
[2009.05.25 22:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CA
[2011.11.13 16:45:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2008.11.26 20:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DivoGames
[2011.07.18 23:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easybits GO
[2008.06.25 00:51:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Elaborate Bytes
[2011.12.25 18:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EscapeTheMuseum
[2011.12.25 18:47:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EscapeTheMuseum2
[2008.09.04 18:59:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.11.14 22:45:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Farm Fishes
[2009.05.21 23:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FireGlow
[2011.12.01 20:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Free Ride Games
[2008.06.29 21:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GameXzone
[2012.05.26 21:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\HotSync
[2012.02.01 13:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.05.16 10:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.05.03 11:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2010.04.13 18:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2011.12.01 19:40:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlayFirst
[2010.04.21 09:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCap Games
[2008.08.06 00:14:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCapv1005
[2011.11.18 21:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Princess Isabella
[2012.02.26 23:10:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RescueFrenzy
[2012.02.05 16:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\rionix
[2012.03.01 18:11:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sandlot Games
[2009.07.31 22:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SugarGames
[2011.05.16 09:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Synaptics
[2011.12.01 19:35:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.12.24 20:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TERMINAL Studio
[2009.08.03 19:41:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TomTom
[2012.02.18 20:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Youdagames
[2011.05.30 12:32:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Data aplikací\IObit
[2012.05.27 11:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\máma\Data aplikací\HotSync
[2011.11.18 21:04:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Awem
[2011.12.17 19:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Boolat Games
[2010.11.04 20:30:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\CoSoSys
[2011.11.13 17:13:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\DAEMON Tools
[2011.11.13 16:43:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\DAEMON Tools Lite
[2012.05.05 19:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\DieselPuppet
[2011.11.17 21:29:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\EnchantedCavern
[2011.12.22 19:46:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\EnchantedCavern2
[2011.11.20 22:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Friday's games
[2009.04.13 17:19:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Gaijin Ent
[2011.12.15 22:52:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Games
[2011.07.18 20:41:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\go
[2012.05.26 21:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\HotSync
[2012.03.19 22:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\ICQ
[2011.05.20 19:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\IObit
[2008.09.11 18:32:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Jpeg Resampler
[2012.05.26 21:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\Leadertech
[2011.12.01 19:40:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\PlayFirst
[2012.04.22 17:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\V-Games
[2012.04.22 16:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\VendelGAMES
[2012.02.18 20:05:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\YoudaGames
[2009.01.19 00:00:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Alawar
[2008.12.04 22:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Artogon
[2010.11.10 19:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Braid
[2010.01.20 02:14:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1
[2011.11.21 10:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools
[2009.05.22 01:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools Lite
[2009.09.21 18:57:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools Pro
[2009.03.23 12:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\EleFun Games
[2008.11.02 22:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Elladive3
[2008.09.04 19:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ESET
[2009.02.24 00:13:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Friday's games
[2012.05.28 08:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\HotSync
[2012.08.13 09:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQ
[2008.06.24 23:19:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQ Toolbar
[2008.06.25 11:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQLite
[2008.06.25 22:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\InterTrust
[2011.05.16 09:29:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\IObit
[2009.01.13 00:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\iWin
[2008.09.11 00:37:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\JewelMatch2
[2008.07.31 21:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Jpeg Resampler
[2008.11.19 05:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Leadertech
[2009.08.02 13:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Meridian93
[2008.12.20 02:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Participatory Culture Foundation
[2008.12.20 02:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\PCF-VLC
[2008.08.26 21:44:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Reflexive
[2009.01.14 00:28:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Sahmon Games
[2009.08.03 19:41:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\TomTom
[2009.01.25 21:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\URSE Games
[2011.08.10 07:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\uTorrent
[2008.09.03 23:00:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Vso
[2011.05.30 12:32:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\UpdatusUser\Data aplikací\IObit
[2012.08.15 09:37:13 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
[2012.08.14 12:52:47 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{900CBAD6-5DF5-4C07-8934-209E90828A2A}.job

========== Purity Check ==========



========== Custom Scans ==========

< >

< >

< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2002.09.20 18:17:54 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 15:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2002.09.20 18:17:54 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM#1\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM#2\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM#3\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM#4\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM#5\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Jednotka CD-ROM\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM#1\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM#2\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM#3\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM#4\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM#5\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Jednotka CD-ROM\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#1\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#2\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#3\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#4\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#5\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM#6\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Jednotka CD-ROM\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#1\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#2\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#3\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#4\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#5\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM#6\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Jednotka CD-ROM\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Jednotka CD-ROM#1\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Jednotka CD-ROM#2\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Jednotka CD-ROM#3\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Jednotka CD-ROM\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2002.09.20 18:17:54 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.03 22:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2004.08.03 23:00:14 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- C:\WINDOWS\$NtServicePackUninstall$\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.12.29 23:42:35 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 11:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\VIA Standard PCI to ISA Bridge\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\VIA Standard PCI to ISA Bridge\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\VIA Standard PCI to ISA Bridge\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\VIA Standard PCI to ISA Bridge\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\VIA Standard PCI to ISA Bridge\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2001.10.24 11:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: VIAMRAID.SYS >
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\VIA RAID Controller - 3149\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\VIA RAID Controller - 3149\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\VIA RAID Controller - 3149\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\VIA RAID Controller - 3149\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\2K\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\x86\NT5\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\SRV2003\x86\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\XP\x86\viamraid.sys
[2008.07.09 21:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\WINDOWS\system32\drivers\viamraid.sys
[2005.04.26 13:22:28 | 000,060,928 | ---- | M] (VIA Technologies inc,.ltd) MD5=0363E216E4EB5052969C96608934DBDE -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\VIA SATA RAID Controller\viamraid.sys
[2005.04.26 13:22:28 | 000,060,928 | ---- | M] (VIA Technologies inc,.ltd) MD5=0363E216E4EB5052969C96608934DBDE -- C:\WINDOWS\OemDir\viamraid.sys
[2005.04.26 13:22:28 | 000,060,928 | ---- | M] (VIA Technologies inc,.ltd) MD5=0363E216E4EB5052969C96608934DBDE -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\viamraid.sys
[2008.09.26 17:38:50 | 000,137,880 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=0C619F1C0F1D0150C155C3CD7687DC87 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\VISTA\x86\viamraid.sys
[2008.09.26 17:38:50 | 000,137,880 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=0C619F1C0F1D0150C155C3CD7687DC87 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\VISTA\x86\viamraid.sys
[2007.12.19 20:02:18 | 000,117,872 | ---- | M] (VIA Technologies inc,.ltd) MD5=923C74DE7CB0B4E060B8748968F9A620 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\x86\NT4\viamraid.sys
[2007.12.19 20:02:18 | 000,117,872 | ---- | M] (VIA Technologies inc,.ltd) MD5=923C74DE7CB0B4E060B8748968F9A620 -- C:\Documents and Settings\Tonik\Dokumenty\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\NT4\viamraid.sys

< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[2 C:\WINDOWS\$NtServicePackUninstall$\*.tmp files -> C:\WINDOWS\$NtServicePackUninstall$\*.tmp -> ]
[2 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[197 C:\WINDOWS\Internet Logs\*.tmp files -> C:\WINDOWS\Internet Logs\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\9181aa1a705853155a5b571dcab9bf8f\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\9181aa1a705853155a5b571dcab9bf8f\*.tmp -> ]
[1 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
[2 C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp -> ]
[9 C:\WINDOWS\temp\*.tmp files -> C:\WINDOWS\temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010.01.20 02:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Adobe
[2009.01.19 00:00:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Alawar
[2008.06.30 22:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Apple Computer
[2008.12.04 22:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Artogon
[2010.11.10 19:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Braid
[2010.01.20 02:14:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\com.adobe.example.avatarAirApplication.199ED43C2CFEB351CD0244628B93195D7C58F98C.1
[2008.06.24 23:11:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\CyberLink
[2011.11.21 10:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools
[2009.05.22 01:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools Lite
[2009.09.21 18:57:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DAEMON Tools Pro
[2010.05.07 10:37:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\DivX
[2011.03.21 10:37:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\dvdcss
[2009.03.23 12:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\EleFun Games
[2008.11.02 22:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Elladive3
[2008.09.04 19:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ESET
[2009.02.24 00:13:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Friday's games
[2008.06.24 22:50:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Help
[2012.05.28 08:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\HotSync
[2012.08.13 09:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQ
[2008.06.24 23:19:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQ Toolbar
[2008.06.25 11:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQLite
[2008.06.23 23:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Identities
[2009.02.03 01:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\InstallShield
[2008.06.25 22:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\InterTrust
[2011.05.16 09:29:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\IObit
[2009.01.13 00:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\iWin
[2008.09.11 00:37:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\JewelMatch2
[2008.07.31 21:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Jpeg Resampler
[2008.11.19 05:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Leadertech
[2008.06.24 20:42:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Macromedia
[2008.07.15 01:29:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Malwarebytes
[2009.08.02 13:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Meridian93
[2008.09.11 02:52:25 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Tonik\Data aplikací\Microsoft
[2008.06.24 21:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla
[2008.12.20 02:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Participatory Culture Foundation
[2008.12.20 02:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\PCF-VLC
[2011.04.28 11:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Real
[2008.08.26 21:44:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Reflexive
[2009.01.14 00:28:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Sahmon Games
[2011.03.28 10:38:09 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Tonik\Data aplikací\SecuROM
[2010.01.08 21:10:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Skype
[2010.01.08 19:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\skypePM
[2008.11.23 20:29:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Sun
[2009.08.03 19:41:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\TomTom
[2009.01.25 21:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\URSE Games
[2011.08.10 07:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\uTorrent
[2011.03.15 11:46:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\vlc
[2008.09.03 23:00:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\Vso
[2008.08.26 21:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2008.09.03 23:00:31 | 000,081,920 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\ezpinst.exe
[2008.07.15 00:03:18 | 000,017,751 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\hafiw.exe
[2008.09.11 02:52:25 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Microsoft\Installer\{89661B04-C646-4412-B6D3-5E19F02F1F37}\ARPPRODUCTICON.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011.11.13 17:13:43 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[1999.03.02 00:29:21 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[1999.03.02 00:29:21 | 000,630,784 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[1999.03.02 00:29:21 | 000,401,408 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.08.14 12:53:15 | 000,002,553 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2012.08.15 10:24:14 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerApp.exe
[2012.08.15 10:24:14 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2012.08.15 09:36:40 | 000,000,335 | -H-- | M] () -- C:\WINDOWS\system32\vsconfig.xml
[2012.08.15 09:36:52 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"TomTomHOME.exe" = "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -- [2011.04.22 14:21:10 | 000,247,728 | ---- | M] (TomTom)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.08.15 09:45:16 | 000,000,512 | ---- | M] () MD5=6A4E480513C29DAA94430ABD5C77E12A -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2010.09.30 19:51:34 | 003,601,920 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\StrongDC++\Downloads\Faith No More\1992 Angel Dust\11. Crack Hitler.ogg
[2002.08.21 15:41:40 | 000,000,714 | ---- | M] () -- \Program Files\Croteam\Serious Sam - The Second Encounter\Data\Messages\Enemies\Firecracker.txt
[2006.09.17 12:04:44 | 000,000,103 | ---- | M] () -- \Program Files\Elaborate Bytes\CloneDVD2\MoreCracks.url
[2006.09.17 12:04:44 | 000,000,103 | ---- | M] () -- \Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2.v2.9.0.3.crack.TFT.TEAM\MoreCracks.url
[2007.07.20 17:01:36 | 000,349,680 | ---- | M] () -- \Program Files\GamersFirst\War Rock\texture\FM003\Decal_crack01_FM003.dds
[2007.07.09 18:46:18 | 000,174,720 | ---- | M] () -- \Program Files\GamersFirst\War Rock\texture\FM003\Decal_crack02_FM003.dds
[2007.07.06 15:29:44 | 000,349,312 | ---- | M] () -- \Program Files\GamersFirst\War Rock\texture\FM003\Decal_crack03_FM003.dds
[2007.07.20 17:47:30 | 000,349,680 | ---- | M] () -- \Program Files\GamersFirst\War Rock\texture\Santo\Decal_crack01_FM003.dds
[2010.11.09 17:48:44 | 000,012,118 | ---- | M] () -- \Program Files\Hry.cz\Echoes of Sorrow\Sounds\Sfx\S_0067_GlassCrackle.ogg

< *keygen* /s >

< *loader* /s >
[2011.08.19 06:15:24 | 000,000,289 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Big Fish Games\Game Manager\resources\default\images\static_loader.gif
[2012.04.27 17:14:26 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.04.27 17:14:26 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2010.11.07 14:22:13 | 000,000,045 | ---- | M] () -- \Documents and Settings\Tonik\Local Settings\Data aplikací\SRDownloader.err
[2010.11.07 15:56:50 | 000,000,848 | ---- | M] () -- \Documents and Settings\Tonik\Local Settings\Data aplikací\SRDownloader.nast
[2010.04.17 12:27:13 | 000,475,136 | ---- | M] () -- \Documents and Settings\Tonik\Plocha\mptrosky\SRDownloader.exe
[2009.06.05 13:55:44 | 000,000,171 | ---- | M] () -- \Documents and Settings\Tonik\Plocha\mptrosky\Rih4n4\BIG MONEY FOR THE UPLOADER - HOTFILE!.URL
[2011.08.19 06:15:24 | 000,000,289 | ---- | M] () -- \Program Files\bfgclient\resources\default\images\static_loader.gif
[2005.09.09 12:17:14 | 000,099,593 | ---- | M] () -- \Program Files\Brave Dwarves 2 Deluxe Demo\loader.dat
[2005.09.12 15:23:24 | 000,483,328 | ---- | M] () -- \Program Files\Brave Dwarves 2 Deluxe Demo\loader.exe
[2010.11.25 13:07:32 | 000,385,177 | ---- | M] () -- \Program Files\Hry.cz\Echoes of Sorrow\Graphics\Loader\HintLoaderGP.jpg
[2010.11.25 13:07:58 | 000,548,106 | ---- | M] () -- \Program Files\Hry.cz\Echoes of Sorrow\Graphics\Loader\HintLoaderST.jpg
[2009.01.07 17:52:44 | 000,022,134 | ---- | M] () -- \Program Files\Hry.cz\Echoes of Sorrow\Graphics\Loader\LoaderFont.pec
[2012.02.01 13:32:00 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2012.02.01 13:32:02 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2012.02.01 13:31:59 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2012.03.19 22:20:11 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2006.12.23 17:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2004.08.17 15:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 22:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 22:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2 \WINDOWS\$NtServicePackUninstall$\*.tmp files -> \WINDOWS\$NtServicePackUninstall$\*.tmp -> ]
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2009.07.20 10:34:54 | 000,070,936 | ---- | M] () -- \WINDOWS\system32\PhysXLoader.dll
[2009.10.29 06:48:56 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2011.02.02 15:35:38 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2011.11.18 21:18:51 | 000,003,728 | ---- | M] () -- \Documents and Settings\Petra\Data aplikací\Awem\Aquitania\serial.xml
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Komunikační port#1\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-103659\Komunikační port\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Komunikační port#1\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 11-16-2009-111536\Komunikační port\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Komunikační port#1\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-3-2010-191845\Komunikační port\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Komunikační port#1\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 1-7-2010-22412\Komunikační port\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Komunikační port#1\serial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \Documents and Settings\Tonik\Dokumenty\DriverGenius\Backup\Driver Backup 2-15-2010-8505\Komunikační port\serial.sys
[2009.07.13 00:47:30 | 000,000,059 | ---- | M] () -- \Documents and Settings\Tonik\Plocha\Driver.Genius.Pro.Edition.v9.0.0.178\Driver.Genius.Pro.Edition.v9.0.0.178\Serial.txt
[2012.04.11 01:15:28 | 000,434,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.dll
[2012.05.20 22:15:16 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.ni.dll
[2004.08.17 15:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2004.08.17 15:44:16 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2 \WINDOWS\$NtServicePackUninstall$\*.tmp files -> \WINDOWS\$NtServicePackUninstall$\*.tmp -> ]
[2008.04.14 04:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2004.07.19 18:54:20 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2001.10.25 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2001.10.25 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2001.10.25 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2001.10.25 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05F547A9
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB2A7E51
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5A437AC3
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2CFBE2D1
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:411E1BE2
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:F79DAA38
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0FB9F88B
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:81F83028
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:63DAEC83
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0C988F7D
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:3D36932D

< End of report >

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 10:09
od antivirak
OTL Extras logfile created on: 15.8.2012 9:39:00 - Run 1
OTL by OldTimer - Version 3.2.57.0 Folder = C:\Documents and Settings\Tonik\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1023,48 Mb Total Physical Memory | 532,00 Mb Available Physical Memory | 51,98% Memory free
1,65 Gb Paging File | 1,29 Gb Available in Paging File | 78,13% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 189,91 Gb Total Space | 100,47 Gb Free Space | 52,91% Space Free | Partition Type: NTFS
Drive E: | 232,88 Gb Total Space | 4,01 Gb Free Space | 1,72% Space Free | Partition Type: NTFS

Computer Name: TONDA-MP8095ZA8 | User Name: Tonik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JpegResamplerDir] -- "C:\Program Files\JPEG Resampler\JpegResampler.exe" "%1" (David Macek)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5 -- (ICQ, LLC.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\BitLord\BitLord.exe" = C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord -- (www.BitLord.com)
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5 -- (ICQ, LLC.)
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe" = C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2 -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03BA5299-62AC-4FAD-B917-C40A94BF4DD5}_is1" = Svět koní - Já chci skákat
"{056C3109-0CD5-42D1-B627-CB1A3C6E6858}" = Youda Mystery The Stanwick Legacy
"{13061CAA-0284-4F9A-B460-3D4699575B35}" = Synaptics Gesture Suite featuring SYNAPTICS | Scrybe
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20DEB77C-21D6-4D22-BB47-233E47613D57}" = Microsoft Games for Windows - LIVE Redistributable
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{24463BC0-F930-455F-8636-4C0B25F449DD}" = Der Schatz des Pharao XXL
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 24
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39586F4F-758D-4A92-A5DF-33E9DB9C09D9}" = CA eTrust PestPatrol
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00AF-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Czech)
"{9923B241-D64B-4AD9-983F-AB1334FD867E}_is1" = Rescue Team 2 version 1.0
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.85
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{CDABABCC-3341-444A-A0A9-9F0F9890C75F}" = Schatzjäger 3
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.9
"{FAFD6961-F6E7-4B05-BBF7-247BD1AD2B1D}" = Heart of Tibet
"{FF24F097-D090-41D2-8E9C-BAFEBBFD938C}" = palmOne
"{FF895069-BD9A-11D5-986D-00500443CF9F}" = Moorhuhn 3 DL
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adventure Chronicles: The Search for Lost Treasures" = Adventure Chronicles: The Search for Lost Treasures
"Alchemy Mahjong" = Alchemy Mahjong
"avast" = avast! Free Antivirus
"BFGC" = Big Fish Games: Game Manager
"BitLord" = BitLord 1.1
"BloodRayne" = BloodRayne
"Brave Dwarves 2 Deluxe Demo_is1" = Brave Dwarves 2 Deluxe Demo 1.5
"CCleaner" = CCleaner (remove only)
"CloneCD" = CloneCD
"C-Media Audio Driver" = C-Media WDM Audio Driver
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diner Dash_is1" = Diner Dash
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX Setup
"Easy DVD Clone" = Easy DVD Clone
"Encyklopedie kouzel: První příběh" = Encyklopedie kouzel: První příběh
"Encyklopedie kouzel: Záhada za svitu měsíce" = Encyklopedie kouzel: Záhada za svitu měsíce
"Escape the Museum" = Escape the Museum
"Escape the Museum 2" = Escape the Museum 2
"Escape the Museum 2 1.00" = Escape the Museum 2 1.00
"Escape the Museum1.0" = Escape the Museum
"exent_466550" = The Treasures of Montezuma
"exent_571050" = Moorhuhn - Jewel of Darkness
"exent_668750" = Insider Tales - Vanished in Rome
"FLV Player" = FLV Player 2.0 (build 25)
"FLVPlayer" = FLV Player 1.3.3
"Google Chrome" = Google Chrome
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"IrfanView" = IrfanView (remove only)
"JPEG Resampler_is1" = JPEG Resampler Vs 5.0
"Magic Encyclopedia Moon Light 1.00" = Magic Encyclopedia Moon Light 1.00
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MV2Player" = MV2Player (remove only)
"Mystery Cruise" = Mystery Cruise
"Nero - Burning Rom!UninstallKey" = Ahead Nero Burning ROM
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"Ozvěny Smutku" = Ozvěny Smutku
"Princezna Isabela: Prokletí Čarodějnice" = Princezna Isabela: Prokletí Čarodějnice
"rajče.net_is1" = rajče beta50
"Rescue Frenzy" = Rescue Frenzy
"Sekce 42: Tajemství devíti" = Sekce 42: Tajemství devíti
"Sony Ericsson Themes Creator" = Sony Ericsson Themes Creator 3.19
"SpywareBlaster_is1" = SpywareBlaster 4.2
"The Treasures of Montezuma 2 1.00" = The Treasures of Montezuma 2 1.00
"TomTom HOME" = TomTom HOME 2.8.2.2264
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.1.11
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Weird Park: Broken Tune Collector's Edition" = Weird Park: Broken Tune Collector's Edition
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"winusb0100" = Microsoft WinUsb 1.0
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WOLAPI" = Westwood Shared Internet Components
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5
"Začarovaná jeskyně" = Začarovaná jeskyně
"Začarovaná jeskyně 2" = Začarovaná jeskyně 2
"Záchranáři v akci" = Záchranáři v akci
"Záchranný tým" = Záchranný tým
"Záchranný tým 2" = Záchranný tým 2
"Zbloudilé duše: Příběh o domku pro panenky" = Zbloudilé duše: Příběh o domku pro panenky
"ZoneAlarm Pro" = ZoneAlarm Pro

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10.6.2012 11:52:31 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5009
Description = TrueVector engine: Timeout on debug mutex

Error - 10.6.2012 11:52:37 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt
and has been copied to "C:\WINDOWS\Internet Logs\xDBA0.tmp". File "C:\WINDOWS\Internet
Logs\IAMDB.RDB" was corrupt and has been deleted.

Error - 10.6.2012 11:52:38 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt,
restoring from backup "C:\WINDOWS\Internet Logs\BACKUP.RDB".

Error - 10.6.2012 11:52:43 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb"
was corrupt and has been copied to "C:\WINDOWS\Internet Logs\xDBA1.tmp". File
"C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb" was corrupt and has been deleted.

Error - 18.6.2012 12:03:40 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt
and has been copied to "C:\WINDOWS\Internet Logs\xDBA2.tmp". File "C:\WINDOWS\Internet
Logs\IAMDB.RDB" was corrupt and has been deleted.

Error - 18.6.2012 12:03:41 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt,
restoring from backup "C:\WINDOWS\Internet Logs\BACKUP.RDB".

Error - 18.6.2012 12:03:44 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb"
was corrupt and has been copied to "C:\WINDOWS\Internet Logs\xDBA3.tmp". File
"C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb" was corrupt and has been deleted.

Error - 25.6.2012 17:21:44 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt
and has been copied to "C:\WINDOWS\Internet Logs\xDB1A3.tmp". File "C:\WINDOWS\Internet
Logs\IAMDB.RDB" was corrupt and has been deleted.

Error - 25.6.2012 17:21:45 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\IAMDB.RDB" was corrupt,
restoring from backup "C:\WINDOWS\Internet Logs\BACKUP.RDB".

Error - 25.6.2012 17:21:46 | Computer Name = TONDA-MP8095ZA8 | Source = TrueVector Service | ID = 5007
Description = TrueVector engine: File "C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb"
was corrupt and has been copied to "C:\WINDOWS\Internet Logs\xDB1A4.tmp". File
"C:\WINDOWS\Internet Logs\TONDA-MP8095ZA8.ldb" was corrupt and has been deleted.

[ System Events ]
Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:01 | Computer Name = TONDA-MP8095ZA8 | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 15.8.2012 3:36:39 | Computer Name = TONDA-MP8095ZA8 | Source = Service Control Manager | ID = 7000
Description = Služba X4HSEx neuspěla při spuštění v důsledku následující chyby:
%%3

Error - 15.8.2012 3:36:44 | Computer Name = TONDA-MP8095ZA8 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Beep


< End of report >

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 11:12
od Márty84
:!: Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
:arrow: Znovu spustte OTL
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:services
epfwtdir
ehdrv
eamon
vsdatant
MpKsl0f94dd75
catchme
Skype C2C Service
gupdate
SkypeUpdate
vsmon
AdobeFlashPlayerUpdateSvc
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\system32\ZoneLabs
C:\WINDOWS\system32\DRIVERS\eamon.sys
C:\WINDOWS\system32\drivers\ehdrv.sys
C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{900CBAD6-5DF5-4C07-8934-209E90828A2A}.job
C:\Program Files\Zone Labs
C:\Program Files\ESET

:otl
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{C6EE2603-C531-4C52-BB1F-2757F74C8AC4}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=^A17&apn_dtid=^YYYYYY^YY^CZ&apn_uid=6914ea47-6600-4934-9b6c-dd44ef7befbc&apn_sauid=C8E7028D-3145-4A11-BF73-B5F40615666D
IE - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1
FF - user.js..browser.search.defaultenginename: "ICQ Search"
FF - user.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
[2008.12.20 02:06:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Extensions\{6334D996-EA3E-4a0e-AA8D-15BA56B37241}
[2011.08.09 07:43:41 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012.02.01 13:33:45 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.05.23 09:23:03 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\daemon-search.xml
[2012.08.13 10:38:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-1.xml
[2008.11.15 22:00:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-10.xml
[2008.12.18 01:13:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-11.xml
[2009.02.05 20:53:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-12.xml
[2009.02.11 21:24:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-13.xml
[2009.03.06 01:57:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-14.xml
[2009.03.30 20:58:39 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-15.xml
[2009.04.22 23:14:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-16.xml
[2009.04.29 20:25:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-17.xml
[2009.06.15 20:31:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-18.xml
[2009.07.27 18:27:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-19.xml
[2008.09.26 20:18:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-2.xml
[2009.08.05 07:33:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-20.xml
[2009.09.13 16:32:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-21.xml
[2010.06.24 18:50:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-22.xml
[2010.06.24 18:50:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-23.xml
[2010.07.02 09:23:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-24.xml
[2008.09.28 19:48:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-3.xml
[2008.10.01 18:54:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-4.xml
[2008.10.01 20:24:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-5.xml
[2008.10.14 00:12:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-6.xml
[2008.10.14 00:16:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-7.xml
[2008.10.14 00:27:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-8.xml
[2008.10.16 11:21:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-9.xml
[2011.03.30 16:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin.xml
[2009.10.01 21:19:08 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\sweetim.xml
CHR - default_search_provider: ICQ Search (Enabled)
CHR - default_search_provider: search_url = http://search.icq.com/search/results/?q={searchTerms}&ch_id=icq-fx-plug
O3 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-1085031214-1425521274-839522115-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe (Zone Labs Inc.)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
[2008.09.04 18:59:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.05.16 10:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2011.05.30 12:32:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Data aplikací\IObit
[2011.05.20 19:20:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petra\Data aplikací\IObit
[2008.09.04 19:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ESET
[2008.06.24 23:19:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\ICQ Toolbar
[2011.05.16 09:29:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tonik\Data aplikací\IObit
[2011.05.30 12:32:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\UpdatusUser\Data aplikací\IObit
[2 C:\WINDOWS\$NtServicePackUninstall$\*.tmp files -> C:\WINDOWS\$NtServicePackUninstall$\*.tmp -> ]
[2 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[197 C:\WINDOWS\Internet Logs\*.tmp files -> C:\WINDOWS\Internet Logs\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\9181aa1a705853155a5b571dcab9bf8f\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\9181aa1a705853155a5b571dcab9bf8f\*.tmp -> ]
[1 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
[2 C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp -> ]
[9 C:\WINDOWS\temp\*.tmp files -> C:\WINDOWS\temp\*.tmp -> ]
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05F547A9
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB2A7E51
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5A437AC3
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2CFBE2D1
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:411E1BE2
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:F79DAA38
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0FB9F88B
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:81F83028
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:63DAEC83
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0C988F7D
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:3D36932D

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-
"DivXUpdate"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 12:05
od antivirak
All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: máma
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 64932 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 118277520 bytes
->Flash cache emptied: 1033 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Petra
->Temp folder emptied: 15238705 bytes
->Temporary Internet Files folder emptied: 236038 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 1074862173 bytes
->Google Chrome cache emptied: 14391200 bytes
->Flash cache emptied: 3191 bytes

User: Tonik
->Temp folder emptied: 6295898 bytes
->Temporary Internet Files folder emptied: 30798589 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 134484048 bytes
->Google Chrome cache emptied: 7858465 bytes
->Flash cache emptied: 17541 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7645951 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 134218793 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 473,00 mb


[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: máma
->Flash cache emptied: 0 bytes

User: NetworkService

User: Petra
->Flash cache emptied: 0 bytes

User: Tonik
->Flash cache emptied: 0 bytes

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Error: Unable to stop service epfwtdir!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\epfwtdir deleted successfully.
Error: Unable to stop service ehdrv!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ehdrv deleted successfully.
Error: Unable to stop service eamon!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\eamon deleted successfully.
Error: Unable to stop service vsdatant!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vsdatant deleted successfully.
Service MpKsl0f94dd75 stopped successfully!
Service MpKsl0f94dd75 deleted successfully!
Service catchme stopped successfully!
Service catchme deleted successfully!
Service Skype C2C Service stopped successfully!
Service Skype C2C Service deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service vsmon stopped successfully!
Service vsmon deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\system32\ZoneLabs folder moved successfully.
File move failed. C:\WINDOWS\system32\DRIVERS\eamon.sys scheduled to be moved on reboot.
File move failed. C:\WINDOWS\system32\drivers\ehdrv.sys scheduled to be moved on reboot.
File move failed. C:\WINDOWS\system32\DRIVERS\epfwtdir.sys scheduled to be moved on reboot.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\User_Feed_Synchronization-{900CBAD6-5DF5-4C07-8934-209E90828A2A}.job moved successfully.
C:\Program Files\Zone Labs\ZoneAlarm\repair folder moved successfully.
C:\Program Files\Zone Labs\ZoneAlarm\images folder moved successfully.
C:\Program Files\Zone Labs\ZoneAlarm\Help folder moved successfully.
C:\Program Files\Zone Labs\ZoneAlarm folder moved successfully.
C:\Program Files\Zone Labs folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Quarantine folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner folder moved successfully.
C:\Program Files\ESET folder moved successfully.
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry key HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19}\ not found.
Registry key HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ not found.
Registry key HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{C6EE2603-C531-4C52-BB1F-2757F74C8AC4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C6EE2603-C531-4C52-BB1F-2757F74C8AC4}\ not found.
Registry key HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.0.1 removed from extensions.enabledItems
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\FireFox\Profiles\7jrzywch.default\user.js moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1\ deleted successfully.
C:\Program Files\Yahoo!\Common\npyaxmpb.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=8\ deleted successfully.
C:\Documents and Settings\Tonik\Local Settings\Data aplikací\Google\Update\1.2.183.39\npGoogleOneClick8.dll moved successfully.
File HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird not found.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Extensions\{6334D996-EA3E-4a0e-AA8D-15BA56B37241} folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\daemon-search.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\Mozilla\Firefox\Profiles\7jrzywch.default\searchplugins\sweetim.xml moved successfully.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry value HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_USERS\S-1-5-21-1085031214-1425521274-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ZoneAlarm Pro.lnk moved successfully.
File C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe not found.
Starting removal of ActiveX control {6A060448-60F9-11D5-A6CD-0002B31F7455}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{6A060448-60F9-11D5-A6CD-0002B31F7455}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{6A060448-60F9-11D5-A6CD-0002B31F7455}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A060448-60F9-11D5-A6CD-0002B31F7455}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6A060448-60F9-11D5-A6CD-0002B31F7455}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A060448-60F9-11D5-A6CD-0002B31F7455}\ not found.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
File Animation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab not found.
Starting removal of ActiveX control DirectAnimation Java Classes
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\DirectAnimation Java Classes\ not found.
File oft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab not found.
Starting removal of ActiveX control Microsoft XML Parser for Java
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Microsoft XML Parser for Java\ not found.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET Smart Security\Charon folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET Smart Security folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET NOD32 Antivirus\Stats folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET\ESET NOD32 Antivirus folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\ESET folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\Default User\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\Default User\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\Default User\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\Petra\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\Petra\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\Petra\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\ESET\ESET Smart Security\Antispam folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\ESET\ESET Smart Security folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\ESET folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\ICQ Toolbar folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit\Advanced SystemCare V4\Toolbox folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit\Advanced SystemCare V4\PMonitor folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit\Advanced SystemCare V4\Backup folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\Tonik\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\UpdatusUser\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\UpdatusUser\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\UpdatusUser\Data aplikací\IObit folder moved successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc6.tmp deleted successfully.
C:\WINDOWS\$NtServicePackUninstall$\setc7.tmp deleted successfully.
C:\WINDOWS\AppPatch\SETC6.tmp deleted successfully.
C:\WINDOWS\AppPatch\SETC7.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB10.tmp deleted successfully.
C:\WINDOWS\Installer\MSID8.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB10.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB11.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB12.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB13.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB14.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB15.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB16.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB17.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB18.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB19.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1A3.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1A4.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB1F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB20.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB21.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB22.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB23.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB24.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB25.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB26.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB27.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB28.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB29.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB2F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB30.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB31.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB32.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB33.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB34.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB35.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB36.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB37.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB38.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB39.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB3F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB40.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB41.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB42.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB43.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB44.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB45.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB46.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB47.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB48.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB49.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB4F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB50.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB51.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB52.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB53.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB54.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB55.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB56.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB57.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB58.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB59.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB5F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB60.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB61.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB62.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB63.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB64.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB65.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB66.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB67.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB68.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB69.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB6F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB70.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB71.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB72.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB73.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB74.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB75.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB76.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB77.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB78.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB79.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB7F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB80.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB81.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB82.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB83.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB84.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB85.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB86.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB87.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB88.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB89.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB8F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB90.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB91.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB92.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB93.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB94.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB95.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB96.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB97.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB98.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB99.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9A.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9B.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9C.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9D.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9E.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDB9F.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA0.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA1.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA2.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA3.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA4.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA5.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA6.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA7.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA8.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBA9.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAA.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAB.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAC.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAD.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAE.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBAF.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB0.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB1.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB2.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB3.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB4.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB5.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB6.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB7.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB8.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBB9.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBA.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBB.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBC.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBD.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBE.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBBF.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBC.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBC0.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBD.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBDA.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBDB.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBDC.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBE.tmp deleted successfully.
C:\WINDOWS\Internet Logs\xDBF.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\9181aa1a705853155a5b571dcab9bf8f\BIT20.tmp deleted successfully.
C:\WINDOWS\system32\CatRoot\TMP6D.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:05F547A9 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:CB2A7E51 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:5A437AC3 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:2CFBE2D1 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:411E1BE2 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:F79DAA38 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0FB9F88B deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:81F83028 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:63DAEC83 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0C988F7D deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:3D36932D deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.

OTL by OldTimer - Version 3.2.57.0 log created on 08152012_124046

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
C:\WINDOWS\system32\DRIVERS\eamon.sys moved successfully.
C:\WINDOWS\system32\drivers\ehdrv.sys moved successfully.
C:\WINDOWS\system32\DRIVERS\epfwtdir.sys moved successfully.

PendingFileRenameOperations files...
[2012.08.15 13:03:53 | 000,000,000 | ---- | M] () C:\WINDOWS\temp\_avast_\Webshlock.txt : Unable to obtain MD5
File C:\WINDOWS\system32\DRIVERS\eamon.sys not found!
File C:\WINDOWS\system32\drivers\ehdrv.sys not found!
File C:\WINDOWS\system32\DRIVERS\epfwtdir.sys not found!

Registry entries deleted on Reboot...

Re: prosim o prev.kontrolu PC

Napsal: 15 srp 2012 12:28
od Márty84
:arrow: Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

:arrow: Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

:arrow: Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete :)
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

:arrow: Defragmentujte disk
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci :)




:arrow: A pokud neni s pc nejaky problem, bude to vse.

Re: prosim o prev.kontrolu PC

Napsal: 31 srp 2012 11:42
od motji
Už je vše v pořádku? :)

Re: prosim o prev.kontrolu PC

Napsal: 17 zář 2012 10:59
od motji
Dobrý den,
pro neaktivitu je toto téma uzamknuto.
Pokud ho budete chtít odemknout, kontaktujte mě na email nebo některého z mých kolegů.
Děkujeme za pochopení :)

Re: prosim o prev.kontrolu PC

Napsal: 17 zář 2012 11:01
od motji
Dobrý den,
pro neaktivitu je toto téma uzamknuto.
Pokud ho budete chtít odemknout, kontaktujte mě na email nebo některého z mých kolegů.
Děkujeme za pochopení :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz