Brácho, Honzovi Merkymu nejde absolutně najet na Email, seká se mu PC, je to strašně pomalý. Nainstaloval jsem mu Ccleaner, pročistili jsme plochu, odinstalovali zbytečnosti, ale žádné zlepšení. Posílám ti tady log z Rsitu a koukni prosím na to a já se sem zítra stavím a doděláme ostatní. Děkuju moc David
Log z Rsitu:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukáš at 2012-09-18 18:54:26
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (30%) free of 20 GB
Total RAM: 1023 MB (19% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:56:29, on 18.9.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wsrchmn.exe
C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbrmon.exe
C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zsrchmn.exe
C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\ICQ7.6\ICQ.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
D:\hovno\Xfire\xfire.exe
C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Program Files\trend micro\Lukáš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll
R3 - URLSearchHook: (no name) - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - (no file)
R3 - URLSearchHook: (no name) - {4cff1016-c2e2-4fdd-9c67-e32200c25ff9} - C:\Program Files\Retrogamer_4w\bar\1.bin\4wSrcAs.dll
R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
O2 - BHO: Toolbar BHO - {03123bb6-a811-407e-b323-66cf0be510b1} - C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbar.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: BFlix - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\BFlix.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\BabylonToolbar.dll
O2 - BHO: Toolbar BHO - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL
O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Searchcore Toolbar - {af6ac4f2-9825-4fb6-a600-92bc5361f209} - C:\PROGRA~1\Searchcore Toolbar\Datamngr\ToolBar\searchcoredtx.dll
O2 - BHO: MyTools - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\MyTools.dll
O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
O2 - BHO: Vizuální záložky - {C93F72A2-2162-4BBA-A07A-F13663C297A6} - C:\Program Files\Yandex\YandexBarIE\fastdial.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Search Assistant BHO - {d757dbfc-1494-4647-a8b3-abd654988dd8} - C:\Program Files\Retrogamer_4w\bar\1.bin\4wSrcAs.dll
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.6.4.3\bh\Softonic.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: Norton Safe Web Lite BHO - {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Norton Safe Web Lite - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll
O3 - Toolbar: Yandex.Bar - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarTlbr.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
O3 - Toolbar: Searchcore Toolbar - {af6ac4f2-9825-4fb6-a600-92bc5361f209} - C:\PROGRA~1\Searchcore Toolbar\Datamngr\ToolBar\searchcoredtx.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll
O3 - Toolbar: (no name) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - (no file)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Retrogamer - {3392cfec-56f8-41ee-bdb4-4e301efd2c93} - C:\Program Files\Retrogamer_4w\bar\1.bin\4wbar.dll
O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.6.4.3\SoftonicTlbr.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll" (file missing)
O3 - Toolbar: VideoDownloadConverter - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\Searchqu Toolbar\Datamngr\datamngrUI.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [4StoryPrePatch] D:\4 Story\4Story_CZ\PrePatch.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [Retrogamer Search Scope Monitor] "C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wsrchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [Retrogamer_4w Browser Plugin Loader] C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbrmon.exe
O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EADM] "D:\hovno\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [DriverScanner] "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000
O4 - HKCU\..\Run: [RDReminder] C:\Program Files\PC Performer\PCPerformer.exe -rem
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: Xfire.lnk = D:\hovno\Xfire\xfire.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} (GameTap Player) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{322D9B46-694A-4DBB-97DC-616396B5B612}: NameServer = 85.93.160.254,85.93.160.118
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: protector.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BasicScan Service - Unknown owner - C:\Program Files\BasicScan\basicscan.exe
O23 - Service: bProtector - bProtector - C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Updater Service (IBUpdaterService) - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton Safe Web Lite (NSL) - Symantec Corporation - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: RetrogamerService (Retrogamer_4wService) - COMPANYVERS_NAME - C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbarsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: VideoDownloadConverterService (VideoDownloadConverter_4zService) - COMPANYVERS_NAME - C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
--
End of file - 18222 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\DriverScanner.job
C:\WINDOWS\tasks\Norton Security Scan for Lukáš.job
C:\WINDOWS\tasks\PC Performer_DEFAULT.job
C:\WINDOWS\tasks\PC Performer_UPDATES.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\SmartDefrag_Startup.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://home.mywebsearch.com/index.jhtml ... =gamesxite"
prefs.js - "keyword.URL" - "http://search.mywebsearch.com/mywebsear ... searchfor="
"{203FB6B2-2E1E-4474-863B-4C483ECCE78E}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_1.2.0.7\coFFNST\
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"4wffxtbr@Retrogamer_4w.com"=C:\Program Files\Retrogamer_4w\bar\1.bin
"4zffxtbr@VideoDownloadConverter_4z.com"=C:\Program Files\VideoDownloadConverter_4z\bar\1.bin
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Retrogamer_4w.com/Plugin]
"Description"=Retrogamer Plugin
"Path"=C:\Program Files\Retrogamer_4w\bar\1.bin\NP4wStub.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin]
"Description"=VideoDownloadConverter Plugin
"Path"=C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
GameTapPlayer@gametap.com
{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
Search_Results.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\
4fbf236e66dfc@4fbf236e66e35.info
4fd39b2e7d3c3@4fd39b2e7d3fd.info
4fd3a50b5e081@4fd3a50b5e0b9.info
4wffxtbr@Retrogamer_4w.com
4zffxtbr@VideoDownloadConverter_4z.com
ffxtlbr@babylon.com
ffxtlbra@softonic.com
info@bflix.info
info@my-tools-app.com
info@thebflix.com
plugin@yontoo.com
toolbar@ask.com
yasearch@yandex.ru
{75656794-AB59-4712-BFBC-5D816D56F3BC}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
{99079a25-328f-4bd4-be04-00955acaa0a7}
{af6ac4f2-9825-4fb6-a600-92bc5361f209}
{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
{EEE6C361-6118-11DC-9C72-001320C79847}
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\
askcom.xml
conduit.xml
my-web-search.xml
MyTools.xml
Search_Results.xml
softonic.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03123bb6-a811-407e-b323-66cf0be510b1}]
Toolbar BHO - C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbar.dll [2012-06-09 699536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 54248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E}]
BFlix Class - C:\Program Files\BFlix\BFlix.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\BabylonToolbar.dll [2012-07-26 245912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}]
Toolbar BHO - C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll [2012-08-23 699536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
Searchqu Toolbar - C:\PROGRA~1\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]
SearchCore for Browsers - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL [2011-09-27 101272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]
DealPly - C:\Program Files\DealPly\DealPlyIE.dll [2012-02-26 83048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{af6ac4f2-9825-4fb6-a600-92bc5361f209}]
Searchcore Toolbar - C:\PROGRA~1\Searchcore Toolbar\Datamngr\ToolBar\searchcoredtx.dll [2011-12-22 87488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C3A44133-7EAD-434C-AC9E-7F1DA176BA8C}]
MyTools Class - C:\Program Files\MyTools\MyTools.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]
Search Assistant BHO - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2012-08-23 62864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C93F72A2-2162-4BBA-A07A-F13663C297A6}]
Vizuální záložky - C:\Program Files\Yandex\YandexBarIE\fastdial.dll [2011-10-13 2697528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11 1307728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-05-04 1519272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d757dbfc-1494-4647-a8b3-abd654988dd8}]
Search Assistant BHO - C:\Program Files\Retrogamer_4w\bar\1.bin\4wSrcAs.dll [2012-06-09 66960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}]
Softonic Helper Object - C:\Program Files\Softonic\Softonic\1.6.4.3\bh\Softonic.dll [2012-07-10 248936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2011-08-24 1299248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3}]
Norton Safe Web Lite BHO - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll [2010-12-17 433592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo - C:\Program Files\Yontoo\YontooIEClient.dll [2012-03-27 792864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
Ask Toolbar BHO - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2011-10-18 245760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C} - Ask Toolbar - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2011-10-18 245760]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-11-21 1054520]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
{30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - Norton Safe Web Lite - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll [2010-12-17 433592]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Yandex.Bar - C:\Program Files\Yandex\YandexBarIE\yndbar.dll [2011-10-20 12336440]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarTlbr.dll [2012-07-26 268440]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2011-08-24 1299248]
{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
{af6ac4f2-9825-4fb6-a600-92bc5361f209} - Searchcore Toolbar - C:\PROGRA~1\Searchcore Toolbar\Datamngr\ToolBar\searchcoredtx.dll [2011-12-22 87488]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936]
{338B4DFE-2E2C-4338-9E41-E176D497299E}
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-05-04 1519272]
{3392cfec-56f8-41ee-bdb4-4e301efd2c93} - Retrogamer - C:\Program Files\Retrogamer_4w\bar\1.bin\4wbar.dll [2012-06-09 699536]
{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - Softonic Toolbar - C:\Program Files\Softonic\Softonic\1.6.4.3\SoftonicTlbr.dll [2012-07-10 274536]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11 1307728]
{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - VideoDownloadConverter - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll [2012-08-23 699536]
{99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~1\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-07-20 847872]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"DATAMNGR"=C:\PROGRA~1\Searchqu Toolbar\Datamngr\datamngrUI.exe [2012-08-06 1890744]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2011-08-01 114992]
"4StoryPrePatch"=D:\4 Story\4Story_CZ\PrePatch.exe [2012-04-11 327680]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2012-05-04 1561768]
"Retrogamer Search Scope Monitor"=C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wsrchmn.exe [2012-06-09 42552]
"Retrogamer_4w Browser Plugin Loader"=C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbrmon.exe [2012-06-09 30096]
"VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zsrchmn.exe [2012-08-23 42536]
"VideoDownloadConverter_4z Browser Plugin Loader"=C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe [2012-08-23 30096]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ICQ"=~C:\Program Files\ICQ7.6\ICQ.exe silent loginmode=4 []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"EADM"=D:\hovno\Origin\Origin.exe [2012-01-12 28201096]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"DriverScanner"=C:\Program Files\Uniblue\DriverScanner\launcher.exe [2011-05-16 338296]
"RDReminder"=C:\Program Files\PC Performer\PCPerformer.exe [2012-02-01 7338552]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17420464]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Documents and Settings\Lukáš\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
Xfire.lnk - D:\hovno\Xfire\xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="protector.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
"C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe"="C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial"
"C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe"="C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker"
"D:\lotr\game.dat"="D:\lotr\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"D:\battlefield\BFBC2Updater.exe"="D:\battlefield\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"D:\fifa 11\Game\fifa.exe"="D:\fifa 11\Game\fifa.exe:*:Disabled:FIFA 11"
"D:\manual\Metin2\metin2.exe"="D:\manual\Metin2\metin2.exe:*:Disabled:metin2"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Searchcore Toolbar\Datamngr\ToolBar\dtUser.exe"="C:\Program Files\Searchcore Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"D:\hovno\Soulstorm.exe"="D:\hovno\Soulstorm.exe:*:Disabled:Soulstorm"
"D:\pes10\pes2010.exe"="D:\pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\hovno\iw3mp.exe"="D:\hovno\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"D:\FiFa 2011\Game\fifa.exe"="D:\FiFa 2011\Game\fifa.exe:*:Enabled:FIFA 11"
"D:\pes201222\pes2012.exe"="D:\pes201222\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\aoa3\age3x.exe"="D:\aoa3\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"
"C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe"="C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker"
"D:\panúrstebu\game.dat"="D:\panúrstebu\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.FMVC"=fmcodec.dll
======List of files/folders created in the last 1 month======
2012-09-18 18:54:27 ----D---- C:\Program Files\trend micro
2012-09-18 18:54:26 ----DC---- C:\rsit
2012-09-18 18:06:21 ----D---- C:\Program Files\CCleaner
2012-09-15 12:02:27 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
2012-08-29 13:05:30 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\vlc
2012-08-29 12:54:15 ----D---- C:\Program Files\VideoLAN
2012-08-28 11:43:06 ----D---- C:\Program Files\Activision
2012-08-23 13:46:13 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\VideoDownloadConverter_4z
2012-08-23 13:06:52 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\searchqutoolbar
2012-08-23 12:59:32 ----D---- C:\Program Files\Video Download Converter
2012-08-23 12:58:58 ----D---- C:\Program Files\VideoDownloadConverter_4z
======List of files/folders modified in the last 1 month======
2012-09-18 18:54:27 ----RD---- C:\Program Files
2012-09-18 18:51:01 ----D---- C:\WINDOWS\Temp
2012-09-18 18:46:56 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
2012-09-18 18:46:49 ----D---- C:\Program Files\Uniblue
2012-09-18 18:46:48 ----SD---- C:\WINDOWS\Tasks
2012-09-18 18:46:46 ----D---- C:\WINDOWS\Prefetch
2012-09-18 18:43:33 ----D---- C:\WINDOWS
2012-09-18 18:32:43 ----SHD---- C:\WINDOWS\Installer
2012-09-18 18:31:43 ----HD---- C:\Program Files\InstallShield Installation Information
2012-09-18 18:31:39 ----SHDC---- C:\Config.Msi
2012-09-18 18:10:16 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
2012-09-18 18:10:09 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Skype
2012-09-18 18:10:09 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
2012-09-18 18:10:02 ----D---- C:\WINDOWS\Logs
2012-09-18 18:10:01 ----D---- C:\WINDOWS\Minidump
2012-09-18 15:01:01 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-09-17 18:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-09-16 18:24:12 ----D---- C:\WINDOWS\system32\CatRoot2
2012-09-08 19:55:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-09-08 11:39:40 ----D---- C:\Program Files\Mozilla Firefox
2012-09-02 18:12:01 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
2012-08-30 14:08:25 ----D---- C:\WINDOWS\system32\drivers
2012-08-30 14:08:07 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
2012-08-30 13:42:45 ----HD---- C:\WINDOWS\inf
2012-08-30 13:41:51 ----D---- C:\WINDOWS\system32\DirectX
2012-08-29 21:00:09 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-26 13:41:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-08-23 23:41:25 ----DC---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-08-23 13:07:04 ----D---- C:\Program Files\Searchqu Toolbar
2012-08-23 13:06:37 ----D---- C:\Program Files\iLivid
2012-08-21 11:09:36 ----AC---- C:\user.js
2012-08-21 11:08:59 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Babylon
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-14 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-12-30 239168]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-07-26 247808]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-02-09 13415040]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-12 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-12 20480]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-18 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 EraserUtilDrv11220;EraserUtilDrv11220; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 BasicScan Service;BasicScan Service; C:\Program Files\BasicScan\basicscan.exe [2012-04-07 23040]
R2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe [2012-06-11 193616]
R2 bProtector;bProtector; C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe [2012-02-25 773624]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-03 20543]
R2 IBUpdaterService;Updater Service; C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe [2012-04-29 397848]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-11-21 247608]
R2 NSL;Norton Safe Web Lite; C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe [2010-11-24 130000]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-07-13 131131]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-07-13 65599]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-08 2253120]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2011-10-25 793048]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-07-02 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2012-07-02 103736]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
R3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe [2012-06-11 240208]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
S2 Retrogamer_4wService;RetrogamerService; C:\PROGRA~1\Retrogamer_4w\bar\1.bin\4wbarsvc.exe [2012-06-09 42528]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-06-14 160944]
S2 VideoDownloadConverter_4zService;VideoDownloadConverterService; C:\PROGRA~1\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe [2012-08-23 42504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o pomoc bráchu Mc_Murphyho.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
No brácho, tohle je opravdu horor! To jsem ještě neviděl. Honza asi trhnul rekord našeho fóra v počtu aktivních toolbarů v počítači. Kolega Rudy se dokonce diví, že počítač vůbec naběhne. 
Zaflákané jako auto po Rallye Bohemia.
No v první řadě toho budeme strašně moc odinstalovávat. Bude toho pěkně dlouhý seznam, tak to proveď pečlivě a vše, co půjde. Co nepůjde, nevadí, odpálím to já pomocí utilit.
Jako vždy, kdyby byl problém, nestyď se ozvat, vypohlavkuju... ehm... poradíme, posloužíme, předvedeme.
Takže, pokud je tam najdeš, tak v nabídce Přidat nebo odebrat programy odinstaluj tyto toolbary:
Toolbary (lišty prohlížečů) jsou veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti.
Až to všechno pečlivě provedeš, odinstaluj ještě tyto programy:
Znovu - až to všechno provedeš, stáhni a spusť tento odinstalátor (klik). Odstraní zbytky po McAfee (antivir).
No a nakonec, až bude vše z tohoto hotovo, projeď to prosím CCleanerem, ať se zbavíme dalších zbytků, co zůstanou po odinstalaci všeho toho bordela.
A až bude hotovo i toto, hoď mi sem nový log ze RSITu a já Ti pak dám další postup - pustíme si naše oblíbené OTL. 
Snad to vše zvládneš. Dej si záležet - klidně pomalinku, ale nic nevynechej! V pauzách mezi jednotlivými kroky opakovaně tluč po hlavě Honzíka, že ho zdraví brácha Martin.
Zaflákané jako auto po Rallye Bohemia.
No v první řadě toho budeme strašně moc odinstalovávat. Bude toho pěkně dlouhý seznam, tak to proveď pečlivě a vše, co půjde. Co nepůjde, nevadí, odpálím to já pomocí utilit.
Jako vždy, kdyby byl problém, nestyď se ozvat, vypohlavkuju... ehm... poradíme, posloužíme, předvedeme.
Takže, pokud je tam najdeš, tak v nabídce Přidat nebo odebrat programy odinstaluj tyto toolbary:
- Ask Toolbar, ICQToolBar, Norton Safe Web Lite, Yandex.Bar, Babylon Toolbar, SweetIM Toolbar for Internet Explorer, Searchcore Toolbar, DVDVideoSoftTB Toolbar, Retrogamer, Softonic Toolbar, Bing Bar, VideoDownloadConverter, Conduit Engine a Searchqu Toolbar.
Je jich tam opravdu naprosto nechutná sbírečka.
Toolbary (lišty prohlížečů) jsou veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti. Až to všechno pečlivě provedeš, odinstaluj ještě tyto programy:
- McAfee Security Scan Plus
- Pando Networks - Media Booster (Pando Media Booster)
Znovu - až to všechno provedeš, stáhni a spusť tento odinstalátor (klik). Odstraní zbytky po McAfee (antivir). No a nakonec, až bude vše z tohoto hotovo, projeď to prosím CCleanerem, ať se zbavíme dalších zbytků, co zůstanou po odinstalaci všeho toho bordela. A až bude hotovo i toto, hoď mi sem nový log ze RSITu a já Ti pak dám další postup - pustíme si naše oblíbené OTL. Snad to vše zvládneš. Dej si záležet - klidně pomalinku, ale nic nevynechej! V pauzách mezi jednotlivými kroky opakovaně tluč po hlavě Honzíka, že ho zdraví brácha Martin.
-
-
- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
Takže vše co bylo napsáno je pryč. Jediný co nešlo je ten Windows iLivid Toolbar. Ten budeš muset ty. Kouše se to na něm a brání se a to i v nouzovým režimu. Jo a nenašel jsem v programech ten Conduit Engine. Jinak vše v pohodě.
Tady je nový Rsit:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukáš at 2012-09-19 12:36:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (31%) free of 20 GB
Total RAM: 1023 MB (25% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:37:03, on 19.9.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ICQ7.6\ICQ.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
D:\hovno\Xfire\xfire.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
R3 - URLSearchHook: (no name) - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: BFlix - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\BFlix.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL
O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: MyTools - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\MyTools.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: (no name) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - (no file)
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O3 - Toolbar: (no name) - !!{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
O3 - Toolbar: (no name) - !!{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
O3 - Toolbar: (no name) - !!{98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: (no name) - !!{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EADM] "D:\hovno\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [DriverScanner] "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000
O4 - HKCU\..\Run: [RDReminder] C:\Program Files\PC Performer\PCPerformer.exe -rem
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: Xfire.lnk = D:\hovno\Xfire\xfire.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} (GameTap Player) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{322D9B46-694A-4DBB-97DC-616396B5B612}: NameServer = 85.93.160.254,85.93.160.118
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: protector.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BasicScan Service - Unknown owner - C:\Program Files\BasicScan\basicscan.exe
O23 - Service: bProtector - bProtector - C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Updater Service (IBUpdaterService) - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 11919 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\DriverScanner.job
C:\WINDOWS\tasks\Norton Security Scan for Lukáš.job
C:\WINDOWS\tasks\PC Performer_DEFAULT.job
C:\WINDOWS\tasks\PC Performer_UPDATES.job
C:\WINDOWS\tasks\SmartDefrag_Startup.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://home.mywebsearch.com/index.jhtml ... =gamesxite"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
GameTapPlayer@gametap.com
{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
Search_Results.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\
4fbf236e66dfc@4fbf236e66e35.info
4fd39b2e7d3c3@4fd39b2e7d3fd.info
4fd3a50b5e081@4fd3a50b5e0b9.info
ffxtlbr@babylon.com
ffxtlbra@softonic.com
info@bflix.info
info@my-tools-app.com
info@thebflix.com
plugin@yontoo.com
yasearch@yandex.ru
{75656794-AB59-4712-BFBC-5D816D56F3BC}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
{EEE6C361-6118-11DC-9C72-001320C79847}
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\
askcom.xml
conduit.xml
my-web-search.xml
MyTools.xml
Search_Results.xml
softonic.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 54248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E}]
BFlix Class - C:\Program Files\BFlix\BFlix.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]
SearchCore for Browsers - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL [2011-09-27 101272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]
DealPly - C:\Program Files\DealPly\DealPlyIE.dll [2012-02-26 83048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C3A44133-7EAD-434C-AC9E-7F1DA176BA8C}]
MyTools Class - C:\Program Files\MyTools\MyTools.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo - C:\Program Files\Yontoo\YontooIEClient.dll [2012-03-27 792864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
{98889811-442D-49dd-99D7-DC866BE87DBC}
{338B4DFE-2E2C-4338-9E41-E176D497299E}
{99079a25-328f-4bd4-be04-00955acaa0a7}
!!{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
!!{91397D20-1446-11D4-8AF4-0040CA1127B6}
!!{98889811-442D-49dd-99D7-DC866BE87DBC}
!!{EEE6C35B-6118-11DC-9C72-001320C79847}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-07-20 847872]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2011-08-01 114992]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ICQ"=~C:\Program Files\ICQ7.6\ICQ.exe silent loginmode=4 []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"EADM"=D:\hovno\Origin\Origin.exe [2012-01-12 28201096]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"DriverScanner"=C:\Program Files\Uniblue\DriverScanner\launcher.exe [2011-05-16 338296]
"RDReminder"=C:\Program Files\PC Performer\PCPerformer.exe [2012-02-01 7338552]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17420464]
C:\Documents and Settings\Lukáš\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
Xfire.lnk - D:\hovno\Xfire\xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="protector.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
"C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe"="C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial"
"C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe"="C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker"
"D:\lotr\game.dat"="D:\lotr\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"D:\battlefield\BFBC2Updater.exe"="D:\battlefield\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"D:\fifa 11\Game\fifa.exe"="D:\fifa 11\Game\fifa.exe:*:Disabled:FIFA 11"
"D:\manual\Metin2\metin2.exe"="D:\manual\Metin2\metin2.exe:*:Disabled:metin2"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"D:\hovno\Soulstorm.exe"="D:\hovno\Soulstorm.exe:*:Disabled:Soulstorm"
"D:\pes10\pes2010.exe"="D:\pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\hovno\iw3mp.exe"="D:\hovno\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"D:\FiFa 2011\Game\fifa.exe"="D:\FiFa 2011\Game\fifa.exe:*:Enabled:FIFA 11"
"D:\pes201222\pes2012.exe"="D:\pes201222\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\aoa3\age3x.exe"="D:\aoa3\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"
"D:\panúrstebu\game.dat"="D:\panúrstebu\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.FMVC"=fmcodec.dll
======List of files/folders created in the last 1 month======
2012-09-19 11:33:09 ----A---- C:\Program Files\4zUninstall VideoDownloadConverter.dll
2012-09-19 11:33:09 ----A---- C:\Program Files\4zres.dll
2012-09-19 11:29:26 ----A---- C:\Program Files\4wUninstall Retrogamer.dll
2012-09-19 11:29:26 ----A---- C:\Program Files\4wres.dll
2012-09-19 11:09:42 ----A---- C:\Program Files\Uninstall Ask Toolbar.dll
2012-09-18 19:34:31 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2012-09-18 18:54:27 ----D---- C:\Program Files\trend micro
2012-09-18 18:54:26 ----DC---- C:\rsit
2012-09-18 18:06:21 ----D---- C:\Program Files\CCleaner
2012-09-15 12:02:27 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
2012-08-29 13:05:30 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\vlc
2012-08-29 12:54:15 ----D---- C:\Program Files\VideoLAN
2012-08-28 11:43:06 ----D---- C:\Program Files\Activision
======List of files/folders modified in the last 1 month======
2012-09-19 12:31:58 ----D---- C:\WINDOWS\Temp
2012-09-19 12:29:34 ----D---- C:\WINDOWS
2012-09-19 12:25:30 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Skype
2012-09-19 12:24:40 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
2012-09-19 12:23:05 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-09-19 12:21:38 ----SD---- C:\WINDOWS\Tasks
2012-09-19 12:19:15 ----D---- C:\WINDOWS\Prefetch
2012-09-19 11:54:20 ----SHDC---- C:\Config.Msi
2012-09-19 11:54:20 ----SHD---- C:\WINDOWS\Installer
2012-09-19 11:54:18 ----RD---- C:\Program Files
2012-09-19 11:54:17 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
2012-09-19 11:31:49 ----D---- C:\Program Files\SweetIM
2012-09-19 11:31:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\SweetIM
2012-09-19 11:20:40 ----D---- C:\WINDOWS\system32\CatRoot2
2012-09-19 11:19:49 ----D---- C:\Program Files\NortonInstaller
2012-09-19 11:19:43 ----D---- C:\WINDOWS\system32\drivers
2012-09-19 11:19:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2012-09-19 11:14:33 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
2012-09-19 11:14:16 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-09-19 11:14:16 ----D---- C:\Program Files\Microsoft
2012-09-18 18:46:56 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
2012-09-18 18:46:49 ----D---- C:\Program Files\Uniblue
2012-09-18 18:31:43 ----HD---- C:\Program Files\InstallShield Installation Information
2012-09-18 18:10:16 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
2012-09-18 18:10:09 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
2012-09-18 18:10:02 ----D---- C:\WINDOWS\Logs
2012-09-18 18:10:01 ----D---- C:\WINDOWS\Minidump
2012-09-17 18:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-09-08 19:55:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-09-08 11:39:40 ----D---- C:\Program Files\Mozilla Firefox
2012-08-30 13:42:45 ----HD---- C:\WINDOWS\inf
2012-08-30 13:41:51 ----D---- C:\WINDOWS\system32\DirectX
2012-08-29 21:00:09 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-26 13:41:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-08-23 23:41:25 ----DC---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-08-23 13:06:37 ----D---- C:\Program Files\iLivid
2012-08-21 11:09:36 ----AC---- C:\user.js
2012-08-21 11:08:59 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Babylon
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-14 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-12-30 239168]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-07-26 247808]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-02-09 13415040]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-12 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-12 20480]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-18 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 EraserUtilDrv11220;EraserUtilDrv11220; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 BasicScan Service;BasicScan Service; C:\Program Files\BasicScan\basicscan.exe [2012-04-07 23040]
R2 bProtector;bProtector; C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe [2012-02-25 773624]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-03 20543]
R2 IBUpdaterService;Updater Service; C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe [2012-04-29 397848]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-07-13 131131]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-07-13 65599]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-08 2253120]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2011-10-25 793048]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-07-02 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2012-07-02 103736]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-06-14 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Tady je nový Rsit:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukáš at 2012-09-19 12:36:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (31%) free of 20 GB
Total RAM: 1023 MB (25% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:37:03, on 19.9.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ICQ7.6\ICQ.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
D:\hovno\Xfire\xfire.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\BasicScan\basicscan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
R3 - URLSearchHook: (no name) - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: BFlix - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\BFlix.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL
O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: MyTools - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\MyTools.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: (no name) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - (no file)
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O3 - Toolbar: (no name) - !!{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
O3 - Toolbar: (no name) - !!{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
O3 - Toolbar: (no name) - !!{98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: (no name) - !!{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EADM] "D:\hovno\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [DriverScanner] "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000
O4 - HKCU\..\Run: [RDReminder] C:\Program Files\PC Performer\PCPerformer.exe -rem
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1935655697-1958367476-682003330-1005\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: Xfire.lnk = D:\hovno\Xfire\xfire.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} (GameTap Player) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{322D9B46-694A-4DBB-97DC-616396B5B612}: NameServer = 85.93.160.254,85.93.160.118
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: protector.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BasicScan Service - Unknown owner - C:\Program Files\BasicScan\basicscan.exe
O23 - Service: bProtector - bProtector - C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Updater Service (IBUpdaterService) - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 11919 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\DriverScanner.job
C:\WINDOWS\tasks\Norton Security Scan for Lukáš.job
C:\WINDOWS\tasks\PC Performer_DEFAULT.job
C:\WINDOWS\tasks\PC Performer_UPDATES.job
C:\WINDOWS\tasks\SmartDefrag_Startup.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://home.mywebsearch.com/index.jhtml ... =gamesxite"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
GameTapPlayer@gametap.com
{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
Search_Results.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\
4fbf236e66dfc@4fbf236e66e35.info
4fd39b2e7d3c3@4fd39b2e7d3fd.info
4fd3a50b5e081@4fd3a50b5e0b9.info
ffxtlbr@babylon.com
ffxtlbra@softonic.com
info@bflix.info
info@my-tools-app.com
info@thebflix.com
plugin@yontoo.com
yasearch@yandex.ru
{75656794-AB59-4712-BFBC-5D816D56F3BC}
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
{EEE6C361-6118-11DC-9C72-001320C79847}
C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\
askcom.xml
conduit.xml
my-web-search.xml
MyTools.xml
Search_Results.xml
softonic.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 54248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E}]
BFlix Class - C:\Program Files\BFlix\BFlix.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]
SearchCore for Browsers - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL [2011-09-27 101272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]
DealPly - C:\Program Files\DealPly\DealPlyIE.dll [2012-02-26 83048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C3A44133-7EAD-434C-AC9E-7F1DA176BA8C}]
MyTools Class - C:\Program Files\MyTools\MyTools.dll [2011-12-30 167936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo - C:\Program Files\Yontoo\YontooIEClient.dll [2012-03-27 792864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
{98889811-442D-49dd-99D7-DC866BE87DBC}
{338B4DFE-2E2C-4338-9E41-E176D497299E}
{99079a25-328f-4bd4-be04-00955acaa0a7}
!!{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
!!{91397D20-1446-11D4-8AF4-0040CA1127B6}
!!{98889811-442D-49dd-99D7-DC866BE87DBC}
!!{EEE6C35B-6118-11DC-9C72-001320C79847}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-07-20 847872]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2011-08-01 114992]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ICQ"=~C:\Program Files\ICQ7.6\ICQ.exe silent loginmode=4 []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"EADM"=D:\hovno\Origin\Origin.exe [2012-01-12 28201096]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"DriverScanner"=C:\Program Files\Uniblue\DriverScanner\launcher.exe [2011-05-16 338296]
"RDReminder"=C:\Program Files\PC Performer\PCPerformer.exe [2012-02-01 7338552]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17420464]
C:\Documents and Settings\Lukáš\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
Xfire.lnk - D:\hovno\Xfire\xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="protector.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
"C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe"="C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial"
"C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe"="C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker"
"D:\lotr\game.dat"="D:\lotr\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"D:\battlefield\BFBC2Updater.exe"="D:\battlefield\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"D:\fifa 11\Game\fifa.exe"="D:\fifa 11\Game\fifa.exe:*:Disabled:FIFA 11"
"D:\manual\Metin2\metin2.exe"="D:\manual\Metin2\metin2.exe:*:Disabled:metin2"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"D:\hovno\Soulstorm.exe"="D:\hovno\Soulstorm.exe:*:Disabled:Soulstorm"
"D:\pes10\pes2010.exe"="D:\pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"D:\hovno\iw3mp.exe"="D:\hovno\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"D:\FiFa 2011\Game\fifa.exe"="D:\FiFa 2011\Game\fifa.exe:*:Enabled:FIFA 11"
"D:\pes201222\pes2012.exe"="D:\pes201222\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\aoa3\age3x.exe"="D:\aoa3\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"
"D:\panúrstebu\game.dat"="D:\panúrstebu\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.6\ICQ.exe"="C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.FMVC"=fmcodec.dll
======List of files/folders created in the last 1 month======
2012-09-19 11:33:09 ----A---- C:\Program Files\4zUninstall VideoDownloadConverter.dll
2012-09-19 11:33:09 ----A---- C:\Program Files\4zres.dll
2012-09-19 11:29:26 ----A---- C:\Program Files\4wUninstall Retrogamer.dll
2012-09-19 11:29:26 ----A---- C:\Program Files\4wres.dll
2012-09-19 11:09:42 ----A---- C:\Program Files\Uninstall Ask Toolbar.dll
2012-09-18 19:34:31 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2012-09-18 18:54:27 ----D---- C:\Program Files\trend micro
2012-09-18 18:54:26 ----DC---- C:\rsit
2012-09-18 18:06:21 ----D---- C:\Program Files\CCleaner
2012-09-15 12:02:27 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
2012-08-29 13:05:30 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\vlc
2012-08-29 12:54:15 ----D---- C:\Program Files\VideoLAN
2012-08-28 11:43:06 ----D---- C:\Program Files\Activision
======List of files/folders modified in the last 1 month======
2012-09-19 12:31:58 ----D---- C:\WINDOWS\Temp
2012-09-19 12:29:34 ----D---- C:\WINDOWS
2012-09-19 12:25:30 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Skype
2012-09-19 12:24:40 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
2012-09-19 12:23:05 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-09-19 12:21:38 ----SD---- C:\WINDOWS\Tasks
2012-09-19 12:19:15 ----D---- C:\WINDOWS\Prefetch
2012-09-19 11:54:20 ----SHDC---- C:\Config.Msi
2012-09-19 11:54:20 ----SHD---- C:\WINDOWS\Installer
2012-09-19 11:54:18 ----RD---- C:\Program Files
2012-09-19 11:54:17 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
2012-09-19 11:31:49 ----D---- C:\Program Files\SweetIM
2012-09-19 11:31:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\SweetIM
2012-09-19 11:20:40 ----D---- C:\WINDOWS\system32\CatRoot2
2012-09-19 11:19:49 ----D---- C:\Program Files\NortonInstaller
2012-09-19 11:19:43 ----D---- C:\WINDOWS\system32\drivers
2012-09-19 11:19:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2012-09-19 11:14:33 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
2012-09-19 11:14:16 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-09-19 11:14:16 ----D---- C:\Program Files\Microsoft
2012-09-18 18:46:56 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
2012-09-18 18:46:49 ----D---- C:\Program Files\Uniblue
2012-09-18 18:31:43 ----HD---- C:\Program Files\InstallShield Installation Information
2012-09-18 18:10:16 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
2012-09-18 18:10:09 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
2012-09-18 18:10:02 ----D---- C:\WINDOWS\Logs
2012-09-18 18:10:01 ----D---- C:\WINDOWS\Minidump
2012-09-17 18:51:26 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-09-08 19:55:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-09-08 11:39:40 ----D---- C:\Program Files\Mozilla Firefox
2012-08-30 13:42:45 ----HD---- C:\WINDOWS\inf
2012-08-30 13:41:51 ----D---- C:\WINDOWS\system32\DirectX
2012-08-29 21:00:09 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-26 13:41:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-08-23 23:41:25 ----DC---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2012-08-23 13:06:37 ----D---- C:\Program Files\iLivid
2012-08-21 11:09:36 ----AC---- C:\user.js
2012-08-21 11:08:59 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Babylon
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-14 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-12-30 239168]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-07-26 247808]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-04-27 93824]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-02-09 13415040]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-07-12 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-07-12 20480]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-18 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 EraserUtilDrv11220;EraserUtilDrv11220; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 BasicScan Service;BasicScan Service; C:\Program Files\BasicScan\basicscan.exe [2012-04-07 23040]
R2 bProtector;bProtector; C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe [2012-02-25 773624]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-03 20543]
R2 IBUpdaterService;Updater Service; C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe [2012-04-29 397848]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-07-13 131131]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-07-13 65599]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-08 2253120]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2011-10-25 793048]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-07-02 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2012-07-02 103736]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-06-14 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
OK, dobrá práce, ale samozřejmě tam toho ještě spooousta zůstala. Na to pustíme našeho silnějšího kamaráda OTL.
Takže stáhni OTL z tohoto odkazu a ulož jej na Plochu.
Takže stáhni OTL z tohoto odkazu a ulož jej na Plochu.
- Pokud používáš operační systém Windows Vista či Windows 7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
- Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
- Zaškrtni okénko Pro všechny uživatele.
- Zaškrtni okénko Kontrola na havěť "LOP".
- Zaškrtni okénko Kontrola na havěť "Purity".
- Stáři souborů změň z 30 dnů na 7 dnů!!
- Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):
Kód: Vybrat vše
CREATERESTOREPOINT
netsvc
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
%userprofile%\Plocha\*.*
%userprofile%\Desktop\*.*
%ALLUSERSPROFILE%\Plocha\*.*
%ALLUSERSPROFILE%\Desktop\*.*
*crack* /s
*keygen* /s
*loader* /s
*RemoveWAT* /s
*minodlogin* /s
*tnod* /s
*TemDono* /s
*AutoKMS* /s
*KMSEmulator* /s
*activator* /s
*serial* /s
*w7lxe* /s
*AutoRearm* /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s
%SystemDrive%\PhysicalMBR.bin /md5- Klikni na tlačítko [Prohledat].
- Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
- Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.
--- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
Takže ještě tedy ten Extras:
OTL Extras logfile created on: 19.9.2012 15:20:55 - Run 1
OTL by OldTimer - Version 3.2.64.0 Folder = C:\Documents and Settings\Lukáš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1023,29 Mb Total Physical Memory | 270,31 Mb Available Physical Memory | 26,42% Memory free
2,40 Gb Paging File | 1,68 Gb Available in Paging File | 69,99% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 6,06 Gb Free Space | 31,05% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 80,22 Gb Free Space | 61,94% Space Free | Partition Type: NTFS
Drive E: | 3,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: BERKOSI | User Name: Lukáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57462:TCP" = 57462:TCP:*:Enabled:Pando Media Booster
"57462:UDP" = 57462:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"57462:TCP" = 57462:TCP:*:Enabled:Pando Media Booster
"57462:UDP" = 57462:UDP:*:Enabled:Pando Media Booster
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe" = C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)
"C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe" = C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial
"C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe" = C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker -- (Visicom Media Inc.)
"D:\lotr\game.dat" = D:\lotr\game.dat:*:Enabled:The Battle for Middle-earth (tm)
"D:\battlefield\BFBC2Updater.exe" = D:\battlefield\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"D:\fifa 11\Game\fifa.exe" = D:\fifa 11\Game\fifa.exe:*:Disabled:FIFA 11
"D:\manual\Metin2\metin2.exe" = D:\manual\Metin2\metin2.exe:*:Disabled:metin2
"C:\Program Files\GameSpy Arcade\Aphex.exe" = C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade -- (IGN Entertainment, Inc.)
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"D:\hovno\Soulstorm.exe" = D:\hovno\Soulstorm.exe:*:Disabled:Soulstorm
"D:\pes10\pes2010.exe" = D:\pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010
"D:\hovno\iw3mp.exe" = D:\hovno\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"D:\FiFa 2011\Game\fifa.exe" = D:\FiFa 2011\Game\fifa.exe:*:Enabled:FIFA 11 -- (Electronic Arts)
"D:\pes201222\pes2012.exe" = D:\pes201222\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012
"D:\aoa3\age3x.exe" = D:\aoa3\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs
"D:\panúrstebu\game.dat" = D:\panúrstebu\game.dat:*:Enabled:The Battle for Middle-earth (tm) -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0900B4D5-B94A-4B08-9EB6-03C9D61D2975}" = Rome - Total War(TM) Demo
"{111E336D-30BF-4CD4-8D69-4541732AFB27}" = Peter Jackson's King Kong - The Official Game of the Movie
"{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"{1D6FB37A-CBCA-11D6-8940-0002A5E32BEF}" = Prasátko a jeho velký piknik
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37476589-E48E-439E-A706-56189E2ED4C4}" = TheBflix
"{3F290582-3F4E-4B96-009C-E0BABAA40C42}" = The Battle for Middle-earth (tm)
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{553B20C6-59CD-4C2F-BE37-16ABF32064BF}" = aTube Catcher 1.0
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = AsusUpdate
"{60EC8EF5-BD58-4675-A4E2-95CA18D8392E}" = Barbie(TM) 12 tančících princezen
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71277DC4-4217-462A-9FF4-62D7815B2C69}" = ADDICT-THING
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86C0E2A3-1EDA-4F01-A43D-80DA8642813C}_is1" = GameTap Web Player
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A267701E-9CB5-43B1-B21C-EB5D3726161A}_is1" = Imperium Romanum - Emperor
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
"{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}" = Max Payne 2
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"aTube Catcher" = aTube Catcher
"avast" = avast! Free Antivirus
"Barbie(TM) Horse Adventures(TM)" = Barbie(TM) Horse Adventures(TM)
"BasicScan" = BasicScan 1.0 build 115
"BFlix" = BFlix
"Call of Duty Single Player Demo" = Call of Duty Single Player Demo
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"DealPly" = DealPly
"DivX Setup" = DivX Setup
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"GameSpy Arcade" = GameSpy Arcade
"GotClip" = GotClip Downloader
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"iLivid" = iLivid
"InstallShield_{0900B4D5-B94A-4B08-9EB6-03C9D61D2975}" = Rome - Total War(TM) Demo
"InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"lcc-win32 (base system)_is1" = lcc-win32 version 3.2 (base system)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 15.0.1 (x86 cs)" = Mozilla Firefox 15.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MyTools" = MyTools
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"Optimizer Pro_is1" = Optimizer Pro v3.0
"Origin" = Origin
"PC Performer_is1" = PC Performer
"Power Rangers Ninja Storm" = Power Rangers Ninja Storm Screen Saver
"PunkBusterSvc" = PunkBuster Services
"Registry Mechanic_is1" = PC Tools Registry Mechanic 11.0
"Searchqu 406 MediaBar" = Windows iLivid Toolbar
"TeamViewer 6" = TeamViewer 6
"Updater Service" = Updater Service
"VideoConverter" = VideoConverter
"VLC media player" = VLC media player 2.0.2
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:57 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:57 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:19:00 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 2.9.2012 12:27:49 | Computer Name = BERKOSI | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
[ System Events ]
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
< End of report >
OTL Extras logfile created on: 19.9.2012 15:20:55 - Run 1
OTL by OldTimer - Version 3.2.64.0 Folder = C:\Documents and Settings\Lukáš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1023,29 Mb Total Physical Memory | 270,31 Mb Available Physical Memory | 26,42% Memory free
2,40 Gb Paging File | 1,68 Gb Available in Paging File | 69,99% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 6,06 Gb Free Space | 31,05% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 80,22 Gb Free Space | 61,94% Space Free | Partition Type: NTFS
Drive E: | 3,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: BERKOSI | User Name: Lukáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57462:TCP" = 57462:TCP:*:Enabled:Pando Media Booster
"57462:UDP" = 57462:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"57462:TCP" = 57462:TCP:*:Enabled:Pando Media Booster
"57462:UDP" = 57462:UDP:*:Enabled:Pando Media Booster
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe" = C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\ICQ7.6\ICQ.exe" = C:\Program Files\ICQ7.6\ICQ.exe:*:Enabled:ICQ7.6 -- (ICQ, LLC.)
"C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe" = C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial
"C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe" = C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe:*:Enabled:DTX broker -- (Visicom Media Inc.)
"D:\lotr\game.dat" = D:\lotr\game.dat:*:Enabled:The Battle for Middle-earth (tm)
"D:\battlefield\BFBC2Updater.exe" = D:\battlefield\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"D:\fifa 11\Game\fifa.exe" = D:\fifa 11\Game\fifa.exe:*:Disabled:FIFA 11
"D:\manual\Metin2\metin2.exe" = D:\manual\Metin2\metin2.exe:*:Disabled:metin2
"C:\Program Files\GameSpy Arcade\Aphex.exe" = C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade -- (IGN Entertainment, Inc.)
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"D:\hovno\Soulstorm.exe" = D:\hovno\Soulstorm.exe:*:Disabled:Soulstorm
"D:\pes10\pes2010.exe" = D:\pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010
"D:\hovno\iw3mp.exe" = D:\hovno\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"D:\FiFa 2011\Game\fifa.exe" = D:\FiFa 2011\Game\fifa.exe:*:Enabled:FIFA 11 -- (Electronic Arts)
"D:\pes201222\pes2012.exe" = D:\pes201222\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012
"D:\aoa3\age3x.exe" = D:\aoa3\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs
"D:\panúrstebu\game.dat" = D:\panúrstebu\game.dat:*:Enabled:The Battle for Middle-earth (tm) -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0900B4D5-B94A-4B08-9EB6-03C9D61D2975}" = Rome - Total War(TM) Demo
"{111E336D-30BF-4CD4-8D69-4541732AFB27}" = Peter Jackson's King Kong - The Official Game of the Movie
"{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"{1D6FB37A-CBCA-11D6-8940-0002A5E32BEF}" = Prasátko a jeho velký piknik
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37476589-E48E-439E-A706-56189E2ED4C4}" = TheBflix
"{3F290582-3F4E-4B96-009C-E0BABAA40C42}" = The Battle for Middle-earth (tm)
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{553B20C6-59CD-4C2F-BE37-16ABF32064BF}" = aTube Catcher 1.0
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = AsusUpdate
"{60EC8EF5-BD58-4675-A4E2-95CA18D8392E}" = Barbie(TM) 12 tančících princezen
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71277DC4-4217-462A-9FF4-62D7815B2C69}" = ADDICT-THING
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86C0E2A3-1EDA-4F01-A43D-80DA8642813C}_is1" = GameTap Web Player
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A267701E-9CB5-43B1-B21C-EB5D3726161A}_is1" = Imperium Romanum - Emperor
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
"{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}" = Max Payne 2
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"aTube Catcher" = aTube Catcher
"avast" = avast! Free Antivirus
"Barbie(TM) Horse Adventures(TM)" = Barbie(TM) Horse Adventures(TM)
"BasicScan" = BasicScan 1.0 build 115
"BFlix" = BFlix
"Call of Duty Single Player Demo" = Call of Duty Single Player Demo
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"DealPly" = DealPly
"DivX Setup" = DivX Setup
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"GameSpy Arcade" = GameSpy Arcade
"GotClip" = GotClip Downloader
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"iLivid" = iLivid
"InstallShield_{0900B4D5-B94A-4B08-9EB6-03C9D61D2975}" = Rome - Total War(TM) Demo
"InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"lcc-win32 (base system)_is1" = lcc-win32 version 3.2 (base system)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 15.0.1 (x86 cs)" = Mozilla Firefox 15.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MyTools" = MyTools
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"Optimizer Pro_is1" = Optimizer Pro v3.0
"Origin" = Origin
"PC Performer_is1" = PC Performer
"Power Rangers Ninja Storm" = Power Rangers Ninja Storm Screen Saver
"PunkBusterSvc" = PunkBuster Services
"Registry Mechanic_is1" = PC Tools Registry Mechanic 11.0
"Searchqu 406 MediaBar" = Windows iLivid Toolbar
"TeamViewer 6" = TeamViewer 6
"Updater Service" = Updater Service
"VideoConverter" = VideoConverter
"VLC media player" = VLC media player 2.0.2
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:56 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:57 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:57 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:18:59 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 31.8.2012 6:19:00 | Computer Name = BERKOSI | Source = MsiInstaller | ID = 11311
Description = Produkt: Rome - Total War Anthology - Chyba 1311. Zdrojový soubor
nelze najít(soubor CAB): C:\DOCUME~1\LUK~1\LOCALS~1\Temp\Rar$EXa0.719\Data1.cab.
Přesvědčte se, zda soubor existuje a zda k němu máte přístup.
Error - 2.9.2012 12:27:49 | Computer Name = BERKOSI | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
[ System Events ]
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:21 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 19.9.2012 9:09:22 | Computer Name = BERKOSI | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
< End of report >
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
OTL 1 část.
OTL logfile created on: 19.9.2012 15:20:55 - Run 1
OTL by OldTimer - Version 3.2.64.0 Folder = C:\Documents and Settings\Lukáš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1023,29 Mb Total Physical Memory | 270,31 Mb Available Physical Memory | 26,42% Memory free
2,40 Gb Paging File | 1,68 Gb Available in Paging File | 69,99% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 6,06 Gb Free Space | 31,05% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 80,22 Gb Free Space | 61,94% Space Free | Partition Type: NTFS
Drive E: | 3,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: BERKOSI | User Name: Lukáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
PRC - [2012.09.08 11:39:17 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.08.13 13:33:30 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
PRC - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.exe
PRC - [2012.02.25 22:01:07 | 000,773,624 | ---- | M] (bProtector) -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
PRC - [2011.10.25 14:44:42 | 000,793,048 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2011.10.08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.05.16 12:22:26 | 000,326,504 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
PRC - [2011.05.16 12:22:26 | 000,025,464 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.11.15 02:59:50 | 002,836,304 | ---- | M] (Xfire Inc.) -- D:\hovno\Xfire\xfire.exe
PRC - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (No Company Name) ==========
MOD - [2012.09.18 23:35:36 | 001,811,456 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12091802\algo.dll
MOD - [2012.09.08 11:39:15 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.08.15 12:01:39 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
MOD - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
MOD - [2012.04.07 13:44:55 | 000,888,832 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.dll
MOD - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.exe
MOD - [2012.02.25 22:01:07 | 000,790,520 | ---- | M] () -- C:\WINDOWS\system32\protector.dll
MOD - [2012.02.21 00:08:56 | 000,344,064 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2012.02.17 20:55:36 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011.07.29 01:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011.05.16 12:22:26 | 000,407,400 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\locale\br\br.dll
MOD - [2011.05.16 12:22:26 | 000,071,016 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\InstallerExtensions.dll
MOD - [2011.05.16 12:22:26 | 000,018,792 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\cwebpage.dll
MOD - [2008.04.14 08:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.04.03 18:04:02 | 000,876,544 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\libeay32.dll
MOD - [2006.04.03 18:04:02 | 000,159,744 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ssleay32.dll
MOD - [2006.04.03 18:04:02 | 000,024,691 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\modules\mod_auth.so
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012.09.08 11:39:16 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.08.15 12:01:42 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.08.13 13:33:30 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012.06.14 11:37:10 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe -- (IBUpdaterService)
SRV - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () [Auto | Running] -- C:\Program Files\BasicScan\basicscan.exe -- (BasicScan Service)
SRV - [2012.02.25 22:01:07 | 000,773,624 | ---- | M] (bProtector) [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -- (bProtector)
SRV - [2011.10.25 14:44:42 | 000,793,048 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2011.10.08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.08 14:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys -- (EraserUtilDrv11220)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2011.12.30 16:07:27 | 000,239,168 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.09.06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.09.06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.09.06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.08.17 10:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011.08.17 10:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011.08.17 09:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011.08.17 09:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2008.08.26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2006.08.14 14:51:28 | 000,105,344 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2006.07.12 07:38:30 | 000,020,480 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.07.12 07:38:28 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.03.18 04:18:58 | 000,392,960 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2005.08.18 00:00:00 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt -- (EverestDriver)
DRV - [2005.08.10 16:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004.08.13 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.my-tools-app.com/?babsrc= ... earchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... 18F38C59DD}
IE - HKU\.DEFAULT\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN ... earchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN ... earchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://home.sweetim.com/?st=1&barid={26 ... 18F38C59DD}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?AF=101587&ba ... 18f38c59dd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTer ... 18f38c59dd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... 0937A611F1
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BscscnPB& ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{399a1442-7377-49e7-8d77-6dc9ed5968c1}: "URL" = http://www.zbozi.cz/?q={searchTerms}&so ... earch_6826
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{5cf5d387-d87c-4408-9a6b-301b0713d62a}: "URL" = http://www.mapy.cz/?query={searchTerms} ... earch_6826
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{8172f457-818d-46db-941f-2bbe53e156af}: "URL" = http://www.searchqu.com/web?src=ieb&app ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browse ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... V=IENOSGBR
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.my-tools-app.com/?babsrc= ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}: "URL" = ${SRCH_SCP_URL}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{eb97f7df-1773-4916-aae6-5af74da8c69d}: "URL" = http://www.firmy.cz/phr/{searchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... 18F38C59DD}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Search Results"
FF - prefs.js..browser.search.defaultthis.engineName: "BitTorrentBar Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.order.1: "Search Results"
FF - prefs.js..browser.search.selectedEngine: "BitTorrentBar Customized Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://home.mywebsearch.com/index.jhtml ... =gamesxite"
FF - prefs.js..extensions.enabledAddons: 4fbf236e66dfc@4fbf236e66e35.info:1.0
FF - prefs.js..extensions.enabledAddons: 4fd39b2e7d3c3@4fd39b2e7d3fd.info:5.1
FF - prefs.js..extensions.enabledAddons: 4fd3a50b5e081@4fd3a50b5e0b9.info:5.1
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.1.9
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.6.0
FF - prefs.js..extensions.enabledAddons: info@bflix.info:5.0
FF - prefs.js..extensions.enabledAddons: info@my-tools-app.com:1.1
FF - prefs.js..extensions.enabledAddons: info@thebflix.com:4.0
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: {88c7f2aa-f93f-432c-8f0e-b7d85967a527}:3.15.1.0
FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... ource=2&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.10.21 18:53:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.12.23 13:14:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.09.08 11:39:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012.09.19 11:30:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Extensions
[2012.09.19 11:56:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions
[2012.06.07 16:05:04 | 000,000,000 | ---D | M] (Xilisoft Download Youtube Toolbar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2012.08.21 14:37:17 | 000,000,000 | ---D | M] (DVDVideoSoftTB) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2012.08.29 14:38:01 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
[2012.06.07 18:54:51 | 000,000,000 | ---D | M] (DealPly) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
[2012.01.07 17:27:59 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2012.06.07 18:54:49 | 000,000,000 | ---D | M] (ADDICT-THING) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fbf236e66dfc@4fbf236e66e35.info
[2012.06.09 21:02:16 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fd39b2e7d3c3@4fd39b2e7d3fd.info
[2012.06.09 21:35:34 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fd3a50b5e081@4fd3a50b5e0b9.info
[2012.06.09 21:02:18 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ffxtlbr@babylon.com
[2012.07.30 09:13:11 | 000,000,000 | ---D | M] (softonic.com) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ffxtlbra@softonic.com
[2012.06.07 18:54:50 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@bflix.info
[2012.06.07 18:54:50 | 000,000,000 | ---D | M] (MyTools extension) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@my-tools-app.com
[2012.06.07 18:54:51 | 000,000,000 | ---D | M] (Bflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@thebflix.com
[2012.07.30 08:00:05 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\plugin@yontoo.com
[2012.06.07 19:08:42 | 000,000,000 | ---D | M] (Yandex.Bar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\yasearch@yandex.ru
[2012.06.09 21:02:16 | 000,021,707 | ---- | M] () (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\adapter@babylontc.com.xpi
[2012.06.09 21:02:18 | 000,011,148 | ---- | M] () (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ocr@babylon.com.xpi
[2012.06.07 16:53:36 | 000,002,324 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\askcom.xml
[2012.05.30 08:39:58 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\conduit.xml
[2012.07.07 14:18:31 | 000,009,633 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\my-web-search.xml
[2012.02.10 12:58:43 | 000,000,544 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\MyTools.xml
[2012.08.23 13:06:27 | 000,002,519 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\Search_Results.xml
[2012.07.30 07:58:44 | 000,002,062 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\softonic.xml
[2012.03.18 13:57:55 | 000,003,974 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\sweetim.xml
[2012.09.19 11:56:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.07 13:44:59 | 000,000,000 | ---D | M] (BasicScan) -- C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
[2012.06.09 20:52:46 | 000,000,000 | ---D | M] (GameTap) -- C:\Program Files\Mozilla Firefox\extensions\GameTapPlayer@gametap.com
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FBF236E66DFC@4FBF236E66E35.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FD39B2E7D3C3@4FD39B2E7D3FD.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FD3A50B5E081@4FD3A50B5E0B9.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\ADAPTER@BABYLONTC.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\FFXTLBRA@SOFTONIC.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@BFLIX.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@MY-TOOLS-APP.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@THEBFLIX.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\OCR@BABYLON.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\PLUGIN@YONTOO.COM
[2012.09.08 11:39:17 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.08.21 11:09:00 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012.08.31 10:41:02 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.08.31 10:41:02 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.08.23 13:06:27 | 000,002,519 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
[2012.08.31 10:41:02 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.08.31 10:41:02 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.08.31 10:41:02 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006.03.02 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (BFlix Class) - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\bflix.dll (BFlix)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (SearchCore for Browsers) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\SearchCore for Browsers\SearchCore for Browsers\BrowserConnection.dll (Bandoo Media, inc)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (MyTools Class) - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\mytools.dll (MyTools)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (no name) - !!{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{91397D20-1446-11D4-8AF4-0040CA1127B6} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\Toolbar\WebBrowser: (no name) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No CLSID value found.
O3 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [DriverScanner] C:\Program Files\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [EADM] D:\hovno\Origin\Origin.exe (Electronic Arts)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [ICQ] C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [RDReminder] C:\Program Files\PC Performer\PCPerformer.exe (PerformerSoft LLC)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1005..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe File not found
O4 - Startup: C:\Documents and Settings\Lukáš\Nabídka Start\Programy\Po spuštění\Xfire.lnk = D:\hovno\Xfire\xfire.exe (Xfire Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} Reg Error: Key error. (GameTap Player)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612}: NameServer = 85.93.160.254,85.93.160.118
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (protector.dll) - C:\WINDOWS\System32\protector.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.10.18 09:38:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004.11.18 22:59:22 | 000,000,000 | R--D | M] - E:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2004.11.18 22:25:54 | 000,684,032 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2004.11.18 22:58:27 | 000,000,103 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2004.11.14 16:08:54 | 000,929,792 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ UDF ]
O33 - MountPoints2\{2b5857cf-f961-11e0-a84c-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{2b5857cf-f961-11e0-a84c-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- [2004.10.29 12:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
%SYSTEMDRIVE%\PHYSICALMBR.BIN /MD5CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.09.19 15:17:42 | 000,600,064 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.19 12:30:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lukáš\Recent
[2012.09.19 12:18:52 | 003,178,400 | ---- | C] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 11:33:09 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\4zUninstall VideoDownloadConverter.dll
[2012.09.19 11:29:26 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\4wUninstall Retrogamer.dll
[2012.09.19 11:09:42 | 000,245,760 | ---- | C] (Ask.com) -- C:\Program Files\Uninstall Ask Toolbar.dll
[2012.09.18 19:34:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Trymedia
[2012.09.18 18:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.09.18 18:54:26 | 000,000,000 | ---D | C] -- C:\rsit
[2012.09.18 18:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.09.15 16:33:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lukáš\Dokumenty\LOTR The Return of the King (tm) Data
[2012.09.15 12:02:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.09.15 12:01:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2012.09.19 15:24:37 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\PC Performer_DEFAULT.job
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\DriverScanner.job
[2012.09.19 12:23:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.09.18 19:35:47 | 000,000,010 | ---- | M] () -- C:\WINDOWS\popcinfo.dat
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Lukáš.job
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.09.19 15:24:22 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.09.19 11:33:09 | 000,172,464 | ---- | C] () -- C:\Program Files\4zres.dll
[2012.09.19 11:29:26 | 000,172,440 | ---- | C] () -- C:\Program Files\4wres.dll
[2012.09.18 18:54:16 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2012.09.18 18:06:23 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.07.03 21:42:40 | 000,159,552 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2012.07.02 22:28:33 | 000,000,268 | ---- | C] () -- C:\WINDOWS\game.ini
[2012.04.09 09:53:54 | 000,000,105 | ---- | C] () -- C:\WINDOWS\KA.ini
[2012.04.07 13:40:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\74e69b9a20b79bcd8ad1e149f6c34ba4_c
[2012.03.27 09:07:57 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2012.02.25 22:01:07 | 000,790,520 | ---- | C] () -- C:\WINDOWS\System32\protector.dll
[2012.01.28 17:32:20 | 000,000,176 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2012.01.21 10:22:15 | 000,000,204 | ---- | C] () -- C:\WINDOWS\RomeTW Demo.ini
[2011.12.31 12:34:39 | 000,292,700 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.12.31 12:34:39 | 000,292,700 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.12.31 12:34:39 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.12.31 12:33:57 | 002,783,770 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.12.23 16:07:27 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2011.12.05 16:54:53 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2011.11.11 09:20:25 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.11.11 09:20:25 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Lukáš\Data aplikací\PnkBstrK.sys
[2011.11.11 09:20:02 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011.11.11 09:19:58 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011.11.11 09:19:57 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011.11.02 07:33:29 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2011.10.27 09:05:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2011.10.24 18:34:01 | 000,000,157 | ---- | C] () -- C:\Documents and Settings\Lukáš\default.pls
[2011.10.23 12:19:28 | 000,001,211 | ---- | C] () -- C:\WINDOWS\disney.ini
[2011.10.22 11:46:05 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.10.22 10:24:36 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.10.21 21:24:13 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.10.21 21:24:07 | 000,023,040 | ---- | C] () -- C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.18 20:19:24 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.10.18 17:29:12 | 000,017,722 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2011.10.18 17:28:03 | 000,017,470 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.10.18 17:28:01 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2011.10.18 17:27:50 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011.10.18 10:30:13 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.10.18 10:29:01 | 000,272,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.10.18 09:40:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.10.18 09:35:55 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
========== ZeroAccess Check ==========
[2011.10.27 09:05:15 | 000,020,480 | ---- | M] () -- C:\WINDOWS\system32\H@tKeysH@@k.DLL
[2011.10.26 09:22:02 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
========== LOP Check ==========
[2012.02.09 12:01:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\100
[2012.08.08 19:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ADDICT-THING
[2011.10.21 20:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
[2011.10.22 11:07:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3 XPack Trial
[2011.10.22 10:27:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3 YPack Trial
[2012.06.07 16:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ask
[2011.10.21 18:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2012.08.21 11:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2012.04.07 13:44:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BasicScan
[2012.08.23 23:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2012.02.25 22:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\bProtector
[2011.10.31 08:20:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.07.03 21:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2012.07.04 23:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2012.06.09 20:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GameTap Web Player
[2012.02.25 13:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService
[2011.10.21 18:49:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.01.14 00:07:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.07.30 11:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.12.30 15:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.07.05 21:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2012.01.14 11:08:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2012.06.09 21:34:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OptimizerPro
[2011.12.30 16:38:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2012.01.14 00:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2012.01.07 10:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2012.07.30 07:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
[2012.01.05 10:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.08.04 19:15:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TheBflix
[2012.06.09 21:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TheBflixUpdater
[2012.04.11 13:44:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Vivendi Universal Games
[2011.10.26 10:40:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{1B0B54CA-AA7D-41D3-A84A-29E7C9CB13A2}
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
========== Purity Check ==========
========== Custom Scans ==========
OTL logfile created on: 19.9.2012 15:20:55 - Run 1
OTL by OldTimer - Version 3.2.64.0 Folder = C:\Documents and Settings\Lukáš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1023,29 Mb Total Physical Memory | 270,31 Mb Available Physical Memory | 26,42% Memory free
2,40 Gb Paging File | 1,68 Gb Available in Paging File | 69,99% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 6,06 Gb Free Space | 31,05% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 80,22 Gb Free Space | 61,94% Space Free | Partition Type: NTFS
Drive E: | 3,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: BERKOSI | User Name: Lukáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
PRC - [2012.09.08 11:39:17 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.08.13 13:33:30 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
PRC - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.exe
PRC - [2012.02.25 22:01:07 | 000,773,624 | ---- | M] (bProtector) -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe
PRC - [2011.10.25 14:44:42 | 000,793,048 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2011.10.08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011.05.16 12:22:26 | 000,326,504 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
PRC - [2011.05.16 12:22:26 | 000,025,464 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.11.15 02:59:50 | 002,836,304 | ---- | M] (Xfire Inc.) -- D:\hovno\Xfire\xfire.exe
PRC - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (No Company Name) ==========
MOD - [2012.09.18 23:35:36 | 001,811,456 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12091802\algo.dll
MOD - [2012.09.08 11:39:15 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.08.15 12:01:39 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
MOD - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe
MOD - [2012.04.07 13:44:55 | 000,888,832 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.dll
MOD - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () -- C:\Program Files\BasicScan\basicscan.exe
MOD - [2012.02.25 22:01:07 | 000,790,520 | ---- | M] () -- C:\WINDOWS\system32\protector.dll
MOD - [2012.02.21 00:08:56 | 000,344,064 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2012.02.17 20:55:36 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011.07.29 01:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011.05.16 12:22:26 | 000,407,400 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\locale\br\br.dll
MOD - [2011.05.16 12:22:26 | 000,071,016 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\InstallerExtensions.dll
MOD - [2011.05.16 12:22:26 | 000,018,792 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\cwebpage.dll
MOD - [2008.04.14 08:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.04.03 18:04:02 | 000,876,544 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\libeay32.dll
MOD - [2006.04.03 18:04:02 | 000,159,744 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ssleay32.dll
MOD - [2006.04.03 18:04:02 | 000,024,691 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\modules\mod_auth.so
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012.09.08 11:39:16 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.08.15 12:01:42 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.08.13 13:33:30 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012.06.14 11:37:10 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.04.29 00:28:51 | 000,397,848 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService\ibsvc.exe -- (IBUpdaterService)
SRV - [2012.04.07 05:22:46 | 000,023,040 | ---- | M] () [Auto | Running] -- C:\Program Files\BasicScan\basicscan.exe -- (BasicScan Service)
SRV - [2012.02.25 22:01:07 | 000,773,624 | ---- | M] (bProtector) [Auto | Running] -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -- (bProtector)
SRV - [2011.10.25 14:44:42 | 000,793,048 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2011.10.08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.09.06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.08 14:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.07.13 16:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.07.13 16:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.03 18:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys -- (EraserUtilDrv11220)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2011.12.30 16:07:27 | 000,239,168 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.09.06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.09.06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.09.06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.08.17 10:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011.08.17 10:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011.08.17 09:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011.08.17 09:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2008.08.26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2006.08.14 14:51:28 | 000,105,344 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2006.07.12 07:38:30 | 000,020,480 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.07.12 07:38:28 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.03.18 04:18:58 | 000,392,960 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2005.08.18 00:00:00 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt -- (EverestDriver)
DRV - [2005.08.10 16:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2005.08.10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.05.16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004.08.13 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.my-tools-app.com/?babsrc= ... earchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... 18F38C59DD}
IE - HKU\.DEFAULT\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN ... earchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN ... earchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://home.sweetim.com/?st=1&barid={26 ... 18F38C59DD}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?AF=101587&ba ... 18f38c59dd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTer ... 18f38c59dd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... 0937A611F1
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BscscnPB& ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{399a1442-7377-49e7-8d77-6dc9ed5968c1}: "URL" = http://www.zbozi.cz/?q={searchTerms}&so ... earch_6826
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{5cf5d387-d87c-4408-9a6b-301b0713d62a}: "URL" = http://www.mapy.cz/?query={searchTerms} ... earch_6826
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{8172f457-818d-46db-941f-2bbe53e156af}: "URL" = http://www.searchqu.com/web?src=ieb&app ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browse ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... V=IENOSGBR
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.my-tools-app.com/?babsrc= ... earchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{DCDBBF03-BC10-457D-911F-EFB0321D22BE}: "URL" = ${SRCH_SCP_URL}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{eb97f7df-1773-4916-aae6-5af74da8c69d}: "URL" = http://www.firmy.cz/phr/{searchTerms}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... 18F38C59DD}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/xilisoftdownl ... 6BC0977554}
IE - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Search Results"
FF - prefs.js..browser.search.defaultthis.engineName: "BitTorrentBar Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.order.1: "Search Results"
FF - prefs.js..browser.search.selectedEngine: "BitTorrentBar Customized Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://home.mywebsearch.com/index.jhtml ... =gamesxite"
FF - prefs.js..extensions.enabledAddons: 4fbf236e66dfc@4fbf236e66e35.info:1.0
FF - prefs.js..extensions.enabledAddons: 4fd39b2e7d3c3@4fd39b2e7d3fd.info:5.1
FF - prefs.js..extensions.enabledAddons: 4fd3a50b5e081@4fd3a50b5e0b9.info:5.1
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.1.9
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.6.0
FF - prefs.js..extensions.enabledAddons: info@bflix.info:5.0
FF - prefs.js..extensions.enabledAddons: info@my-tools-app.com:1.1
FF - prefs.js..extensions.enabledAddons: info@thebflix.com:4.0
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: {88c7f2aa-f93f-432c-8f0e-b7d85967a527}:3.15.1.0
FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... ource=2&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011.10.21 18:53:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.12.23 13:14:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.09.08 11:39:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012.09.19 11:30:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Extensions
[2012.09.19 11:56:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions
[2012.06.07 16:05:04 | 000,000,000 | ---D | M] (Xilisoft Download Youtube Toolbar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2012.08.21 14:37:17 | 000,000,000 | ---D | M] (DVDVideoSoftTB) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2012.08.29 14:38:01 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
[2012.06.07 18:54:51 | 000,000,000 | ---D | M] (DealPly) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
[2012.01.07 17:27:59 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2012.06.07 18:54:49 | 000,000,000 | ---D | M] (ADDICT-THING) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fbf236e66dfc@4fbf236e66e35.info
[2012.06.09 21:02:16 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fd39b2e7d3c3@4fd39b2e7d3fd.info
[2012.06.09 21:35:34 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\4fd3a50b5e081@4fd3a50b5e0b9.info
[2012.06.09 21:02:18 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ffxtlbr@babylon.com
[2012.07.30 09:13:11 | 000,000,000 | ---D | M] (softonic.com) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ffxtlbra@softonic.com
[2012.06.07 18:54:50 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@bflix.info
[2012.06.07 18:54:50 | 000,000,000 | ---D | M] (MyTools extension) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@my-tools-app.com
[2012.06.07 18:54:51 | 000,000,000 | ---D | M] (Bflix) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\info@thebflix.com
[2012.07.30 08:00:05 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\plugin@yontoo.com
[2012.06.07 19:08:42 | 000,000,000 | ---D | M] (Yandex.Bar) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\yasearch@yandex.ru
[2012.06.09 21:02:16 | 000,021,707 | ---- | M] () (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\adapter@babylontc.com.xpi
[2012.06.09 21:02:18 | 000,011,148 | ---- | M] () (No name found) -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\ocr@babylon.com.xpi
[2012.06.07 16:53:36 | 000,002,324 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\askcom.xml
[2012.05.30 08:39:58 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\conduit.xml
[2012.07.07 14:18:31 | 000,009,633 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\my-web-search.xml
[2012.02.10 12:58:43 | 000,000,544 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\MyTools.xml
[2012.08.23 13:06:27 | 000,002,519 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\Search_Results.xml
[2012.07.30 07:58:44 | 000,002,062 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\softonic.xml
[2012.03.18 13:57:55 | 000,003,974 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\searchplugins\sweetim.xml
[2012.09.19 11:56:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.07 13:44:59 | 000,000,000 | ---D | M] (BasicScan) -- C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
[2012.06.09 20:52:46 | 000,000,000 | ---D | M] (GameTap) -- C:\Program Files\Mozilla Firefox\extensions\GameTapPlayer@gametap.com
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FBF236E66DFC@4FBF236E66E35.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FD39B2E7D3C3@4FD39B2E7D3FD.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\4FD3A50B5E081@4FD3A50B5E0B9.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\ADAPTER@BABYLONTC.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\FFXTLBRA@SOFTONIC.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@BFLIX.INFO
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@MY-TOOLS-APP.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\INFO@THEBFLIX.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\OCR@BABYLON.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\LUKáš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ITHPSUV9.DEFAULT\EXTENSIONS\PLUGIN@YONTOO.COM
[2012.09.08 11:39:17 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.08.21 11:09:00 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012.08.31 10:41:02 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.08.31 10:41:02 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.08.23 13:06:27 | 000,002,519 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
[2012.08.31 10:41:02 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.08.31 10:41:02 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.08.31 10:41:02 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006.03.02 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (BFlix Class) - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\bflix.dll (BFlix)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (SearchCore for Browsers) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\SearchCore for Browsers\SearchCore for Browsers\BrowserConnection.dll (Bandoo Media, inc)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (MyTools Class) - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\mytools.dll (MyTools)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (no name) - !!{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{91397D20-1446-11D4-8AF4-0040CA1127B6} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - !!{EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\Toolbar\WebBrowser: (no name) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No CLSID value found.
O3 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [DriverScanner] C:\Program Files\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [EADM] D:\hovno\Origin\Origin.exe (Electronic Arts)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [ICQ] C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004..\Run: [RDReminder] C:\Program Files\PC Performer\PCPerformer.exe (PerformerSoft LLC)
O4 - HKU\S-1-5-21-1935655697-1958367476-682003330-1005..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe File not found
O4 - Startup: C:\Documents and Settings\Lukáš\Nabídka Start\Programy\Po spuštění\Xfire.lnk = D:\hovno\Xfire\xfire.exe (Xfire Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1935655697-1958367476-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1935655697-1958367476-682003330-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} Reg Error: Key error. (GameTap Player)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612}: NameServer = 85.93.160.254,85.93.160.118
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (protector.dll) - C:\WINDOWS\System32\protector.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.10.18 09:38:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004.11.18 22:59:22 | 000,000,000 | R--D | M] - E:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2004.11.18 22:25:54 | 000,684,032 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2004.11.18 22:58:27 | 000,000,103 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2004.11.14 16:08:54 | 000,929,792 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ UDF ]
O33 - MountPoints2\{2b5857cf-f961-11e0-a84c-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{2b5857cf-f961-11e0-a84c-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- [2004.10.29 12:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
%SYSTEMDRIVE%\PHYSICALMBR.BIN /MD5CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.09.19 15:17:42 | 000,600,064 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.19 12:30:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lukáš\Recent
[2012.09.19 12:18:52 | 003,178,400 | ---- | C] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 11:33:09 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\4zUninstall VideoDownloadConverter.dll
[2012.09.19 11:29:26 | 000,699,536 | ---- | C] (MindSpark) -- C:\Program Files\4wUninstall Retrogamer.dll
[2012.09.19 11:09:42 | 000,245,760 | ---- | C] (Ask.com) -- C:\Program Files\Uninstall Ask Toolbar.dll
[2012.09.18 19:34:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Trymedia
[2012.09.18 18:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.09.18 18:54:26 | 000,000,000 | ---D | C] -- C:\rsit
[2012.09.18 18:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.09.15 16:33:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lukáš\Dokumenty\LOTR The Return of the King (tm) Data
[2012.09.15 12:02:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.09.15 12:01:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EA GAMES
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2012.09.19 15:24:37 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\PC Performer_DEFAULT.job
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\DriverScanner.job
[2012.09.19 12:23:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.09.18 19:35:47 | 000,000,010 | ---- | M] () -- C:\WINDOWS\popcinfo.dat
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Lukáš.job
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.09.19 15:24:22 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.09.19 11:33:09 | 000,172,464 | ---- | C] () -- C:\Program Files\4zres.dll
[2012.09.19 11:29:26 | 000,172,440 | ---- | C] () -- C:\Program Files\4wres.dll
[2012.09.18 18:54:16 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2012.09.18 18:06:23 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.07.03 21:42:40 | 000,159,552 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2012.07.02 22:28:33 | 000,000,268 | ---- | C] () -- C:\WINDOWS\game.ini
[2012.04.09 09:53:54 | 000,000,105 | ---- | C] () -- C:\WINDOWS\KA.ini
[2012.04.07 13:40:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\74e69b9a20b79bcd8ad1e149f6c34ba4_c
[2012.03.27 09:07:57 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2012.02.25 22:01:07 | 000,790,520 | ---- | C] () -- C:\WINDOWS\System32\protector.dll
[2012.01.28 17:32:20 | 000,000,176 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2012.01.21 10:22:15 | 000,000,204 | ---- | C] () -- C:\WINDOWS\RomeTW Demo.ini
[2011.12.31 12:34:39 | 000,292,700 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.12.31 12:34:39 | 000,292,700 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.12.31 12:34:39 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.12.31 12:33:57 | 002,783,770 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.12.23 16:07:27 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2011.12.05 16:54:53 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2011.11.11 09:20:25 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.11.11 09:20:25 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Lukáš\Data aplikací\PnkBstrK.sys
[2011.11.11 09:20:02 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011.11.11 09:19:58 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011.11.11 09:19:57 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011.11.02 07:33:29 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2011.10.27 09:05:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2011.10.24 18:34:01 | 000,000,157 | ---- | C] () -- C:\Documents and Settings\Lukáš\default.pls
[2011.10.23 12:19:28 | 000,001,211 | ---- | C] () -- C:\WINDOWS\disney.ini
[2011.10.22 11:46:05 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011.10.22 10:24:36 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.10.21 21:24:13 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.10.21 21:24:07 | 000,023,040 | ---- | C] () -- C:\Documents and Settings\Lukáš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.18 20:19:24 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.10.18 17:29:12 | 000,017,722 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2011.10.18 17:28:03 | 000,017,470 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.10.18 17:28:01 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2011.10.18 17:27:50 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011.10.18 10:30:13 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.10.18 10:29:01 | 000,272,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.10.18 09:40:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.10.18 09:35:55 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
========== ZeroAccess Check ==========
[2011.10.27 09:05:15 | 000,020,480 | ---- | M] () -- C:\WINDOWS\system32\H@tKeysH@@k.DLL
[2011.10.26 09:22:02 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
========== LOP Check ==========
[2012.02.09 12:01:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\100
[2012.08.08 19:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ADDICT-THING
[2011.10.21 20:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
[2011.10.22 11:07:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3 XPack Trial
[2011.10.22 10:27:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3 YPack Trial
[2012.06.07 16:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ask
[2011.10.21 18:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2012.08.21 11:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2012.04.07 13:44:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BasicScan
[2012.08.23 23:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2012.02.25 22:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\bProtector
[2011.10.31 08:20:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.07.03 21:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2012.07.04 23:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2012.06.09 20:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GameTap Web Player
[2012.02.25 13:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService
[2011.10.21 18:49:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.01.14 00:07:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.07.30 11:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2011.12.30 15:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.07.05 21:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2012.01.14 11:08:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2012.06.09 21:34:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OptimizerPro
[2011.12.30 16:38:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2012.01.14 00:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2012.01.07 10:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Premium
[2012.07.30 07:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
[2012.01.05 10:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.08.04 19:15:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TheBflix
[2012.06.09 21:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TheBflixUpdater
[2012.04.11 13:44:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Vivendi Universal Games
[2011.10.26 10:40:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{1B0B54CA-AA7D-41D3-A84A-29E7C9CB13A2}
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
========== Purity Check ==========
========== Custom Scans ==========
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
A druhá:
< netsvc >
[2011.10.18 09:36:40 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2011.10.18 09:42:05 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2011.10.22 01:53:10 | 000,000,440 | -H-- | C] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2011.12.30 14:37:07 | 000,000,280 | ---- | C] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
[2012.02.09 11:56:17 | 000,000,260 | ---- | C] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.02.25 13:28:40 | 000,000,272 | ---- | C] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.02.25 13:28:41 | 000,000,264 | ---- | C] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.06.28 09:49:57 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[83 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.22 11:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Adobe
[2011.10.22 11:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\AdobeUM
[2011.12.30 15:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Ahead
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2011.11.23 18:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DivX
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.10.18 09:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Identities
[2012.01.07 14:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\InstallShield
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2011.10.18 20:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Macromedia
[2012.06.10 14:04:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Microsoft
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2011.12.06 23:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.08.05 22:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\NVIDIA
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.09.19 15:35:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Skype
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.08.29 13:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\vlc
[2012.01.21 14:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\WinRAR
[2012.05.05 21:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xfire
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
< %APPDATA%\*.exe /s >
[2012.04.20 19:08:46 | 005,837,432 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\0386E49A0A4A4BB9A564C114184CD54F\speedupmypcROW.exe
[2011.06.09 21:03:56 | 005,845,528 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\E3BD74482391407C99EE97C4B9B5E1EB\driverscanner (33).exe
[2010.02.16 11:57:38 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\TbHelper2.exe
[2009.11.25 11:12:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\uninstall.exe
[2012.06.07 16:05:04 | 000,059,188 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\UninstallToolbar.exe
[2009.11.25 11:12:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2011.10.18 10:28:18 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.10.18 10:28:18 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.10.18 10:28:18 | 000,466,944 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.09.19 12:24:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %userprofile%\Plocha\*.* >
[2012.01.07 23:50:04 | 000,001,823 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III - The Asian Dynasties.lnk
[2012.01.07 23:42:49 | 000,001,816 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III.lnk
[2012.02.25 14:55:32 | 000,000,609 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\GameSpy Arcade.lnk
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2011.10.21 20:17:07 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Tento počítač.lnk
< %userprofile%\Desktop\*.* >
< %ALLUSERSPROFILE%\Plocha\*.* >
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.06.07 18:52:42 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
< %ALLUSERSPROFILE%\Desktop\*.* >
< *crack* /s >
< *keygen* /s >
< *loader* /s >
[2012.01.02 10:00:38 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img\controls\b9_preloader.gif
[2011.04.05 13:30:42 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img-ie6\controls\b9_preloader.gif
[2012.02.29 10:15:20 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 10:15:20 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.05.30 08:39:56 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.13.0.6\ExternalLibraryLoader.jsm
[2012.07.16 23:10:04 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.14.1.0\ExternalLibraryLoader.jsm
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.15.1.0\ExternalLibraryLoader.jsm
[2012.01.11 13:44:22 | 000,010,144 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.9.0.3\ExternalLibraryLoader.jsm
[2012.08.21 14:45:32 | 000,000,847 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\ajax-loader.gif
[2012.08.21 14:45:32 | 000,001,135 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\loader-icon.png
[2012.08.21 14:45:32 | 000,003,208 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ui\gf\img\loader.gif
[2012.08.21 14:45:32 | 000,001,849 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\modules\ExternalLibraryLoader.jsm
[2012.09.19 15:09:14 | 000,001,303 | ---- | M] () -- \Documents and Settings\Lukáš\Local Settings\Temporary Internet Files\Content.IE5\4IMCALN4\loader_1063[1].js
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2012.02.02 22:50:58 | 000,348,160 | ---- | M] () -- \Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
[2011.10.21 18:47:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.21 18:47:09 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.21 18:47:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.21 18:49:23 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2012.01.25 14:39:42 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\rps\preloader02.swf
[2012.01.25 14:38:55 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\warsheep\preloader02.swf
[2012.01.25 14:37:30 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\zoopaloola\preloader02.swf
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2003.10.14 15:05:18 | 000,004,960 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\LoaderBar.gif
[2003.10.14 15:03:28 | 000,001,064 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\_LoaderBar.gif
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 22:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 22:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2011.11.22 15:12:58 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *RemoveWAT* /s >
< *minodlogin* /s >
< *tnod* /s >
[2003.04.11 17:13:14 | 000,059,006 | R--- | M] () -- \Program Files\THQ\Hledá se Nemo\resources\universal\TestNode.co2
< *TemDono* /s >
< *AutoKMS* /s >
< *KMSEmulator* /s >
< *activator* /s >
< *serial* /s >
[2011.03.10 00:43:26 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.dll
[2012.06.09 20:57:42 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.05.16 12:22:26 | 000,025,984 | ---- | M] () -- \Program Files\Uniblue\DriverScanner\ds_move_serial.exe
[2004.08.17 15:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.10.30 03:03:08 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.29 03:05:30 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.30 03:08:37 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC13875\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 07:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
< *AutoRearm* /s >
< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006.10.27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"SoundMAXPnP" = C:\Program Files\Analog Devices\Core\smax4pnp.exe -- [2006.07.20 23:04:38 | 000,847,872 | R--- | M] (Analog Devices, Inc.)
"SoundMAX" = "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray -- [2006.07.13 08:12:26 | 000,729,088 | ---- | M] (Analog Devices, Inc.)
"avast" = "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui -- [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software)
"DivXUpdate" = "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW -- [2011.07.29 01:08:12 | 001,259,376 | ---- | M] ()
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4 -- [2011.10.10 19:00:51 | 000,127,040 | ---- | M] (ICQ, LLC.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 08:52:38 | 001,695,232 | ---- | M] (Microsoft Corporation)
"EADM" = "D:\hovno\Origin\Origin.exe" -AutoStart -- [2012.01.12 01:29:00 | 028,201,096 | ---- | M] (Electronic Arts)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.11.10 11:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd)
"DriverScanner" = "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000 -- [2011.05.16 12:22:26 | 000,338,296 | ---- | M] (Uniblue Systems Limited)
"RDReminder" = C:\Program Files\PC Performer\PCPerformer.exe -rem -- [2012.02.01 14:47:04 | 007,338,552 | ---- | M] (PerformerSoft LLC)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.07.13 14:18:28 | 017,420,464 | R--- | M] (Skype Technologies S.A.)
< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >
< netsvc >
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[83 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.22 11:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Adobe
[2011.10.22 11:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\AdobeUM
[2011.12.30 15:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Ahead
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2011.11.23 18:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DivX
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.10.18 09:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Identities
[2012.01.07 14:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\InstallShield
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2011.10.18 20:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Macromedia
[2012.06.10 14:04:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Microsoft
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2011.12.06 23:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.08.05 22:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\NVIDIA
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.09.19 15:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Skype
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.08.29 13:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\vlc
[2012.01.21 14:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\WinRAR
[2012.05.05 21:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xfire
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
< %APPDATA%\*.exe /s >
[2012.04.20 19:08:46 | 005,837,432 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\0386E49A0A4A4BB9A564C114184CD54F\speedupmypcROW.exe
[2011.06.09 21:03:56 | 005,845,528 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\E3BD74482391407C99EE97C4B9B5E1EB\driverscanner (33).exe
[2010.02.16 11:57:38 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\TbHelper2.exe
[2009.11.25 11:12:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\uninstall.exe
[2012.06.07 16:05:04 | 000,059,188 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\UninstallToolbar.exe
[2009.11.25 11:12:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2011.10.18 10:28:18 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.10.18 10:28:18 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.10.18 10:28:18 | 000,466,944 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.09.19 12:24:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %userprofile%\Plocha\*.* >
[2012.01.07 23:50:04 | 000,001,823 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III - The Asian Dynasties.lnk
[2012.01.07 23:42:49 | 000,001,816 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III.lnk
[2012.02.25 14:55:32 | 000,000,609 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\GameSpy Arcade.lnk
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2011.10.21 20:17:07 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Tento počítač.lnk
< %userprofile%\Desktop\*.* >
< %ALLUSERSPROFILE%\Plocha\*.* >
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.06.07 18:52:42 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
< %ALLUSERSPROFILE%\Desktop\*.* >
< *crack* /s >
< *keygen* /s >
< *loader* /s >
[2012.01.02 10:00:38 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img\controls\b9_preloader.gif
[2011.04.05 13:30:42 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img-ie6\controls\b9_preloader.gif
[2012.02.29 10:15:20 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 10:15:20 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.05.30 08:39:56 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.13.0.6\ExternalLibraryLoader.jsm
[2012.07.16 23:10:04 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.14.1.0\ExternalLibraryLoader.jsm
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.15.1.0\ExternalLibraryLoader.jsm
[2012.01.11 13:44:22 | 000,010,144 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.9.0.3\ExternalLibraryLoader.jsm
[2012.08.21 14:45:32 | 000,000,847 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\ajax-loader.gif
[2012.08.21 14:45:32 | 000,001,135 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\loader-icon.png
[2012.08.21 14:45:32 | 000,003,208 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ui\gf\img\loader.gif
[2012.08.21 14:45:32 | 000,001,849 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\modules\ExternalLibraryLoader.jsm
[2012.09.19 15:09:14 | 000,001,303 | ---- | M] () -- \Documents and Settings\Lukáš\Local Settings\Temporary Internet Files\Content.IE5\4IMCALN4\loader_1063[1].js
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2012.02.02 22:50:58 | 000,348,160 | ---- | M] () -- \Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
[2011.10.21 18:47:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.21 18:47:09 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.21 18:47:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.21 18:49:23 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2012.01.25 14:39:42 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\rps\preloader02.swf
[2012.01.25 14:38:55 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\warsheep\preloader02.swf
[2012.01.25 14:37:30 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\zoopaloola\preloader02.swf
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2003.10.14 15:05:18 | 000,004,960 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\LoaderBar.gif
[2003.10.14 15:03:28 | 000,001,064 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\_LoaderBar.gif
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 22:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 22:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2011.11.22 15:12:58 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *RemoveWAT* /s >
< *minodlogin* /s >
< *tnod* /s >
[2003.04.11 17:13:14 | 000,059,006 | R--- | M] () -- \Program Files\THQ\Hledá se Nemo\resources\universal\TestNode.co2
< *TemDono* /s >
< *AutoKMS* /s >
< *KMSEmulator* /s >
< *activator* /s >
< *serial* /s >
[2011.03.10 00:43:26 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.dll
[2012.06.09 20:57:42 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.05.16 12:22:26 | 000,025,984 | ---- | M] () -- \Program Files\Uniblue\DriverScanner\ds_move_serial.exe
[2004.08.17 15:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.10.30 03:03:08 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.29 03:05:30 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.30 03:08:37 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC13875\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 07:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
< *AutoRearm* /s >
< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006.10.27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"SoundMAXPnP" = C:\Program Files\Analog Devices\Core\smax4pnp.exe -- [2006.07.20 23:04:38 | 000,847,872 | R--- | M] (Analog Devices, Inc.)
"SoundMAX" = "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray -- [2006.07.13 08:12:26 | 000,729,088 | ---- | M] (Analog Devices, Inc.)
"avast" = "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui -- [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software)
"DivXUpdate" = "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW -- [2011.07.29 01:08:12 | 001,259,376 | ---- | M] ()
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4 -- [2011.10.10 19:00:51 | 000,127,040 | ---- | M] (ICQ, LLC.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 08:52:38 | 001,695,232 | ---- | M] (Microsoft Corporation)
"EADM" = "D:\hovno\Origin\Origin.exe" -AutoStart -- [2012.01.12 01:29:00 | 028,201,096 | ---- | M] (Electronic Arts)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.11.10 11:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd)
"DriverScanner" = "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000 -- [2011.05.16 12:22:26 | 000,338,296 | ---- | M] (Uniblue Systems Limited)
"RDReminder" = C:\Program Files\PC Performer\PCPerformer.exe -rem -- [2012.02.01 14:47:04 | 007,338,552 | ---- | M] (PerformerSoft LLC)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.07.13 14:18:28 | 017,420,464 | R--- | M] (Skype Technologies S.A.)
< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.09.19 15:24:37 | 000,000,512 | ---- | M] () MD5=ECDA6F11F9ABEE1F861F09B95279AF79 -- C:\PhysicalMBR.bin
========== Files - Unicode (All) ==========
[2012.05.19 22:45:41 | 000,000,000 | ---D | M](C:\Documents and Settings\Luká?\Data aplikací\Xfire) -- C:\Documents and Settings\Luká\Data aplikací\Xfire
[2012.01.14 00:15:28 | 000,000,000 | ---D | M](C:\Documents and Settings\Luká?\Data aplikací\Nokia) -- C:\Documents and Settings\Luká\Data aplikací\Nokia
========== Alternate Data Streams ==========
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
< End of report >
< netsvc >
[2011.10.18 09:36:40 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2011.10.18 09:42:05 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2011.10.22 01:53:10 | 000,000,440 | -H-- | C] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2011.12.30 14:37:07 | 000,000,280 | ---- | C] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
[2012.02.09 11:56:17 | 000,000,260 | ---- | C] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.02.25 13:28:40 | 000,000,272 | ---- | C] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.02.25 13:28:41 | 000,000,264 | ---- | C] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.06.28 09:49:57 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[83 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.22 11:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Adobe
[2011.10.22 11:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\AdobeUM
[2011.12.30 15:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Ahead
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2011.11.23 18:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DivX
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.10.18 09:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Identities
[2012.01.07 14:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\InstallShield
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2011.10.18 20:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Macromedia
[2012.06.10 14:04:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Microsoft
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2011.12.06 23:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.08.05 22:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\NVIDIA
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.09.19 15:35:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Skype
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.08.29 13:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\vlc
[2012.01.21 14:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\WinRAR
[2012.05.05 21:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xfire
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
< %APPDATA%\*.exe /s >
[2012.04.20 19:08:46 | 005,837,432 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\0386E49A0A4A4BB9A564C114184CD54F\speedupmypcROW.exe
[2011.06.09 21:03:56 | 005,845,528 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\E3BD74482391407C99EE97C4B9B5E1EB\driverscanner (33).exe
[2010.02.16 11:57:38 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\TbHelper2.exe
[2009.11.25 11:12:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\uninstall.exe
[2012.06.07 16:05:04 | 000,059,188 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\UninstallToolbar.exe
[2009.11.25 11:12:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2011.10.18 10:28:18 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.10.18 10:28:18 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.10.18 10:28:18 | 000,466,944 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.09.19 12:24:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %userprofile%\Plocha\*.* >
[2012.01.07 23:50:04 | 000,001,823 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III - The Asian Dynasties.lnk
[2012.01.07 23:42:49 | 000,001,816 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III.lnk
[2012.02.25 14:55:32 | 000,000,609 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\GameSpy Arcade.lnk
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2011.10.21 20:17:07 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Tento počítač.lnk
< %userprofile%\Desktop\*.* >
< %ALLUSERSPROFILE%\Plocha\*.* >
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.06.07 18:52:42 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
< %ALLUSERSPROFILE%\Desktop\*.* >
< *crack* /s >
< *keygen* /s >
< *loader* /s >
[2012.01.02 10:00:38 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img\controls\b9_preloader.gif
[2011.04.05 13:30:42 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img-ie6\controls\b9_preloader.gif
[2012.02.29 10:15:20 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 10:15:20 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.05.30 08:39:56 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.13.0.6\ExternalLibraryLoader.jsm
[2012.07.16 23:10:04 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.14.1.0\ExternalLibraryLoader.jsm
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.15.1.0\ExternalLibraryLoader.jsm
[2012.01.11 13:44:22 | 000,010,144 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.9.0.3\ExternalLibraryLoader.jsm
[2012.08.21 14:45:32 | 000,000,847 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\ajax-loader.gif
[2012.08.21 14:45:32 | 000,001,135 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\loader-icon.png
[2012.08.21 14:45:32 | 000,003,208 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ui\gf\img\loader.gif
[2012.08.21 14:45:32 | 000,001,849 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\modules\ExternalLibraryLoader.jsm
[2012.09.19 15:09:14 | 000,001,303 | ---- | M] () -- \Documents and Settings\Lukáš\Local Settings\Temporary Internet Files\Content.IE5\4IMCALN4\loader_1063[1].js
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2012.02.02 22:50:58 | 000,348,160 | ---- | M] () -- \Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
[2011.10.21 18:47:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.21 18:47:09 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.21 18:47:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.21 18:49:23 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2012.01.25 14:39:42 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\rps\preloader02.swf
[2012.01.25 14:38:55 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\warsheep\preloader02.swf
[2012.01.25 14:37:30 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\zoopaloola\preloader02.swf
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2003.10.14 15:05:18 | 000,004,960 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\LoaderBar.gif
[2003.10.14 15:03:28 | 000,001,064 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\_LoaderBar.gif
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 22:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 22:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2011.11.22 15:12:58 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *RemoveWAT* /s >
< *minodlogin* /s >
< *tnod* /s >
[2003.04.11 17:13:14 | 000,059,006 | R--- | M] () -- \Program Files\THQ\Hledá se Nemo\resources\universal\TestNode.co2
< *TemDono* /s >
< *AutoKMS* /s >
< *KMSEmulator* /s >
< *activator* /s >
< *serial* /s >
[2011.03.10 00:43:26 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.dll
[2012.06.09 20:57:42 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.05.16 12:22:26 | 000,025,984 | ---- | M] () -- \Program Files\Uniblue\DriverScanner\ds_move_serial.exe
[2004.08.17 15:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.10.30 03:03:08 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.29 03:05:30 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.30 03:08:37 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC13875\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 07:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
< *AutoRearm* /s >
< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006.10.27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"SoundMAXPnP" = C:\Program Files\Analog Devices\Core\smax4pnp.exe -- [2006.07.20 23:04:38 | 000,847,872 | R--- | M] (Analog Devices, Inc.)
"SoundMAX" = "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray -- [2006.07.13 08:12:26 | 000,729,088 | ---- | M] (Analog Devices, Inc.)
"avast" = "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui -- [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software)
"DivXUpdate" = "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW -- [2011.07.29 01:08:12 | 001,259,376 | ---- | M] ()
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4 -- [2011.10.10 19:00:51 | 000,127,040 | ---- | M] (ICQ, LLC.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 08:52:38 | 001,695,232 | ---- | M] (Microsoft Corporation)
"EADM" = "D:\hovno\Origin\Origin.exe" -AutoStart -- [2012.01.12 01:29:00 | 028,201,096 | ---- | M] (Electronic Arts)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.11.10 11:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd)
"DriverScanner" = "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000 -- [2011.05.16 12:22:26 | 000,338,296 | ---- | M] (Uniblue Systems Limited)
"RDReminder" = C:\Program Files\PC Performer\PCPerformer.exe -rem -- [2012.02.01 14:47:04 | 007,338,552 | ---- | M] (PerformerSoft LLC)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.07.13 14:18:28 | 017,420,464 | R--- | M] (Skype Technologies S.A.)
< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >
< netsvc >
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[83 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.22 11:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Adobe
[2011.10.22 11:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\AdobeUM
[2011.12.30 15:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Ahead
[2012.06.09 21:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Babylon
[2012.09.18 18:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\BitTorrent
[2012.09.18 18:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite
[2011.12.23 13:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DDMSettings
[2011.10.23 12:20:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Disney Interactive
[2011.11.23 18:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DivX
[2012.06.07 08:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoft
[2012.06.07 08:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\DVDVideoSoftIEHelpers
[2012.05.26 08:40:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\GetRightToGo
[2012.09.19 12:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\ICQ
[2011.10.18 09:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Identities
[2012.01.07 14:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\InstallShield
[2011.12.30 15:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\IObit
[2011.10.26 10:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Leadertech
[2011.10.18 20:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Macromedia
[2012.06.10 14:04:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Microsoft
[2012.02.26 21:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mount&Blade Warband
[2011.12.06 23:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla
[2012.09.15 12:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\My Battle for Middle-earth Files
[2012.01.14 11:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Nokia
[2012.08.05 22:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\NVIDIA
[2012.06.07 16:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy
[2012.05.25 17:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Optimizer Pro
[2011.12.30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Origin
[2012.01.14 11:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PC Suite
[2012.02.25 13:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PerformerSoft
[2012.09.19 11:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\PriceGong
[2012.04.11 17:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchcoreband
[2011.12.06 20:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\searchquband
[2012.09.19 15:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Skype
[2012.02.10 13:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\TeamViewer
[2012.06.07 16:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4
[2012.09.18 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Uniblue
[2012.08.29 13:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\vlc
[2012.01.21 14:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\WinRAR
[2012.05.05 21:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xfire
[2012.06.07 16:06:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Xilisoft
[2012.09.19 11:54:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukáš\Data aplikací\Yandex
< %APPDATA%\*.exe /s >
[2012.04.20 19:08:46 | 005,837,432 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\0386E49A0A4A4BB9A564C114184CD54F\speedupmypcROW.exe
[2011.06.09 21:03:56 | 005,845,528 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\Lukáš\Data aplikací\OpenCandy\E3BD74482391407C99EE97C4B9B5E1EB\driverscanner (33).exe
[2010.02.16 11:57:38 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\TbHelper2.exe
[2009.11.25 11:12:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\uninstall.exe
[2012.06.07 16:05:04 | 000,059,188 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\UninstallToolbar.exe
[2009.11.25 11:12:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\Lukáš\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2012.09.19 15:01:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.09.19 12:24:02 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2012.09.17 19:01:51 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for Lukáš.job
[2012.09.19 15:01:27 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_DEFAULT.job
[2012.09.19 12:28:18 | 000,000,272 | ---- | M] () -- C:\WINDOWS\Tasks\PC Performer_UPDATES.job
[2012.09.19 12:24:02 | 000,000,280 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2011.10.18 10:28:18 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.10.18 10:28:18 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.10.18 10:28:18 | 000,466,944 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.09.19 12:24:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
[2012.09.18 18:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %userprofile%\Plocha\*.* >
[2012.01.07 23:50:04 | 000,001,823 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III - The Asian Dynasties.lnk
[2012.01.07 23:42:49 | 000,001,816 | -H-- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Age of Empires III.lnk
[2012.02.25 14:55:32 | 000,000,609 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\GameSpy Arcade.lnk
[2012.09.19 12:18:42 | 003,178,400 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Lukáš\Plocha\MCPR.exe
[2012.09.19 15:17:09 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lukáš\Plocha\OTL.exe
[2012.09.18 18:54:06 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\RSIT.exe
[2011.10.21 20:17:07 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Lukáš\Plocha\Tento počítač.lnk
< %userprofile%\Desktop\*.* >
< %ALLUSERSPROFILE%\Plocha\*.* >
[2012.09.18 18:06:23 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2012.06.07 18:52:42 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.09.19 11:04:50 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
< %ALLUSERSPROFILE%\Desktop\*.* >
< *crack* /s >
< *keygen* /s >
< *loader* /s >
[2012.01.02 10:00:38 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img\controls\b9_preloader.gif
[2011.04.05 13:30:42 | 000,002,602 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Babylon\LocalUI\img-ie6\controls\b9_preloader.gif
[2012.02.29 10:15:20 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 10:15:20 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.05.30 08:39:56 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.13.0.6\ExternalLibraryLoader.jsm
[2012.07.16 23:10:04 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.14.1.0\ExternalLibraryLoader.jsm
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.15.1.0\ExternalLibraryLoader.jsm
[2012.01.11 13:44:22 | 000,010,144 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\conduitCommon\modules\3.9.0.3\ExternalLibraryLoader.jsm
[2012.08.21 14:45:32 | 000,000,847 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\ajax-loader.gif
[2012.08.21 14:45:32 | 000,001,135 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ac\img\loader-icon.png
[2012.08.21 14:45:32 | 000,003,208 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\ui\gf\img\loader.gif
[2012.08.21 14:45:32 | 000,001,849 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\chrome\CT2269050\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.08.27 17:55:08 | 000,010,145 | ---- | M] () -- \Documents and Settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\ithpsuv9.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\modules\ExternalLibraryLoader.jsm
[2012.09.19 15:09:14 | 000,001,303 | ---- | M] () -- \Documents and Settings\Lukáš\Local Settings\Temporary Internet Files\Content.IE5\4IMCALN4\loader_1063[1].js
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2012.02.02 22:50:58 | 000,348,160 | ---- | M] () -- \Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
[2011.10.21 18:47:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.21 18:47:09 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.21 18:47:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.21 18:49:23 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2012.01.25 14:39:42 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\rps\preloader02.swf
[2012.01.25 14:38:55 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\warsheep\preloader02.swf
[2012.01.25 14:37:30 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.6\Xtraz\icq\content\zoopaloola\preloader02.swf
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2003.10.14 15:05:18 | 000,004,960 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\LoaderBar.gif
[2003.10.14 15:03:28 | 000,001,064 | ---- | M] () -- \Program Files\PopCap Games\Zuma Deluxe\images\_LoaderBar.gif
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 22:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 22:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2002.12.12 01:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2011.11.22 15:12:58 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
< *RemoveWAT* /s >
< *minodlogin* /s >
< *tnod* /s >
[2003.04.11 17:13:14 | 000,059,006 | R--- | M] () -- \Program Files\THQ\Hledá se Nemo\resources\universal\TestNode.co2
< *TemDono* /s >
< *AutoKMS* /s >
< *KMSEmulator* /s >
< *activator* /s >
< *serial* /s >
[2011.03.10 00:43:26 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.dll
[2012.06.09 20:57:42 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.05.16 12:22:26 | 000,025,984 | ---- | M] () -- \Program Files\Uniblue\DriverScanner\ds_move_serial.exe
[2004.08.17 15:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2011.10.30 03:03:08 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.29 03:05:30 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.30 03:08:37 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC13875\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 07:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
< *AutoRearm* /s >
< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006.10.27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"SoundMAXPnP" = C:\Program Files\Analog Devices\Core\smax4pnp.exe -- [2006.07.20 23:04:38 | 000,847,872 | R--- | M] (Analog Devices, Inc.)
"SoundMAX" = "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray -- [2006.07.13 08:12:26 | 000,729,088 | ---- | M] (Analog Devices, Inc.)
"avast" = "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui -- [2011.09.06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software)
"DivXUpdate" = "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW -- [2011.07.29 01:08:12 | 001,259,376 | ---- | M] ()
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ICQ" = "C:\Program Files\ICQ7.6\ICQ.exe" silent loginmode=4 -- [2011.10.10 19:00:51 | 000,127,040 | ---- | M] (ICQ, LLC.)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 08:52:38 | 001,695,232 | ---- | M] (Microsoft Corporation)
"EADM" = "D:\hovno\Origin\Origin.exe" -AutoStart -- [2012.01.12 01:29:00 | 028,201,096 | ---- | M] (Electronic Arts)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.11.10 11:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd)
"DriverScanner" = "C:\Program Files\Uniblue\DriverScanner\launcher.exe" delay 20000 -- [2011.05.16 12:22:26 | 000,338,296 | ---- | M] (Uniblue Systems Limited)
"RDReminder" = C:\Program Files\PC Performer\PCPerformer.exe -rem -- [2012.02.01 14:47:04 | 007,338,552 | ---- | M] (PerformerSoft LLC)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.07.13 14:18:28 | 017,420,464 | R--- | M] (Skype Technologies S.A.)
< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.09.19 15:24:37 | 000,000,512 | ---- | M] () MD5=ECDA6F11F9ABEE1F861F09B95279AF79 -- C:\PhysicalMBR.bin
========== Files - Unicode (All) ==========
[2012.05.19 22:45:41 | 000,000,000 | ---D | M](C:\Documents and Settings\Luká?\Data aplikací\Xfire) -- C:\Documents and Settings\Luká\Data aplikací\Xfire
[2012.01.14 00:15:28 | 000,000,000 | ---D | M](C:\Documents and Settings\Luká?\Data aplikací\Nokia) -- C:\Documents and Settings\Luká\Data aplikací\Nokia
========== Alternate Data Streams ==========
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
< End of report >
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
No brácho, jak jsem Ti psal na Skype, Honza chytil Zero Access. To není dobrá zpráva, ale popereme se s ním. 
Je to jednoduché, to dáš v pohodě. Pak můžeš před vnoučkama machrovat, žes sice nebojoval ani ve Vietnamu, ani v Korei, ale žes bojoval s jedním z nezákeřnějších virů.
Stáhni RogueKiller - http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
Je to jednoduché, to dáš v pohodě. Pak můžeš před vnoučkama machrovat, žes sice nebojoval ani ve Vietnamu, ani v Korei, ale žes bojoval s jedním z nezákeřnějších virů.
Stáhni RogueKiller - http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
- Ukonči všechny programy!!!
- Spusť RogueKiller.
- Počkej, než program dokončí Prescan.
- Potom klikni na tlačítko [Prohledat] a počkej, až prohlídka proběhne.
- Klikni na tlačítko [Zpráva] - otevře se log, ten mi sem vlož.
--- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
Log z Killeru:
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Kontrola -- Datum : 09/19/2012 18:39:36
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NALEZENO
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NALEZENO
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\WINDOWS\POWERR~1.SCR) -> NALEZENO
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED ([MAJOR] sfsync02.sys @ 0xF74A88B4)
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD1600JS-08NCB1 +++++
--- User ---
[MBR] ecda6f11f9abee1f861f09b95279af79
[BSP] 1c2045d22519ec51d6995710aa3a98c3 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 132614 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[1].txt >>
RKreport[1].txt
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Kontrola -- Datum : 09/19/2012 18:39:36
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NALEZENO
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NALEZENO
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\WINDOWS\POWERR~1.SCR) -> NALEZENO
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED ([MAJOR] sfsync02.sys @ 0xF74A88B4)
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD1600JS-08NCB1 +++++
--- User ---
[MBR] ecda6f11f9abee1f861f09b95279af79
[BSP] 1c2045d22519ec51d6995710aa3a98c3 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 132614 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[1].txt >>
RKreport[1].txt
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
Dobře, takže provedeme opravy. Bude to trošku složitější, ale to zvládneš.
- Ukonči všechny programy!
- Spusť RogueKiller.
- Počkej, než program dokončí Prescan.
- Zvol možnost [Prohledat] a počkej, až prohlídka proběhne.
- V záložce Registry nech všechny nálezy označeny.
- Klikni na tlačítko [Smazat] a následně na [Zpráva] - otevře se log, ten mi sem vlož.
- Pak ještě, aniž bys RogueKiller zavíral, klikni na tlačítko [Oprava DNS] a potom na [Zpráva] - otevře se další log, ten mi sem také vlož.
Čekám tedy na dva logy, brácho. Budou vypadat podobně, jako ten první. Budou krátké, můžeš je prdnout klidně do jednoho příspěvku.--- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
Takže první log z Killera:
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Odebrat -- Datum : 09/19/2012 20:01:38
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\WINDOWS\POWERR~1.SCR) -> NAHRAZENO (C:\WINDOWS\system32\logon.scr)
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED ([MAJOR] sfsync02.sys @ 0xF74A88B4)
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD1600JS-08NCB1 +++++
--- User ---
[MBR] ecda6f11f9abee1f861f09b95279af79
[BSP] 1c2045d22519ec51d6995710aa3a98c3 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 132614 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Odebrat -- Datum : 09/19/2012 20:01:38
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\WINDOWS\POWERR~1.SCR) -> NAHRAZENO (C:\WINDOWS\system32\logon.scr)
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED ([MAJOR] sfsync02.sys @ 0xF74A88B4)
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD1600JS-08NCB1 +++++
--- User ---
[MBR] ecda6f11f9abee1f861f09b95279af79
[BSP] 1c2045d22519ec51d6995710aa3a98c3 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 132614 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
A druhý log z Killera:
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Oprava DNS -- Datum : 09/19/2012 20:02:06
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEVYBRÁNO
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEVYBRÁNO
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Oprava DNS -- Datum : 09/19/2012 20:02:06
¤¤¤ Škodlivé procesy: : 4 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[RESIDUE] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEVYBRÁNO
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NEVYBRÁNO
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
Brácho, proveď akci se spuštěním RogueKilleru přesně podle posledního návodu ještě jednou. Jdi do záložky DNS a tam by měly být dva plus mínus nebo přesně takovéto řádky:
HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118)
HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118)
Pokud tam nebudou, vše je v pořádku a napiš mi to sem. Pokud tam budou, zaškrtni je a dej ještě jednou [Oprava DNS]. Pravděpodobně jsi je neměl prve zaškrtnuté. Hoď mi sem zase log.
HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118)
HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118)
Pokud tam nebudou, vše je v pořádku a napiš mi to sem. Pokud tam budou, zaškrtni je a dej ještě jednou [Oprava DNS]. Pravděpodobně jsi je neměl prve zaškrtnuté. Hoď mi sem zase log.
--- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
-
David Langr
- Návštěvník
- Příspěvky: 92
- Registrován: 12 kvě 2012 20:37
Re: Prosím o pomoc bráchu Mc_Murphyho.
Takže okýnka na zaškrknutí tam nebyly. Bylo tam: Status a pod tím nahrazeno, pak Typ klíče a pod tím DNS, pak celkový a pod tím HKLM. tady je od toho log:
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Oprava DNS -- Datum : 09/19/2012 20:48:49
¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NAHRAZENO ()
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NAHRAZENO ()
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt
RogueKiller V8.0.4 [09/19/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukáš [Práva správce]
Mód : Oprava DNS -- Datum : 09/19/2012 20:48:49
¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
[SUSP PATH] bProtect.exe -- C:\Documents and Settings\All Users\Data aplikací\bProtector\bProtect.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NAHRAZENO ()
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{322D9B46-694A-4DBB-97DC-616396B5B612} : NameServer (85.93.160.254,85.93.160.118) -> NAHRAZENO ()
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt
-
Mc_Murphy
- VIP in memoriam
- Příspěvky: 6706
- Registrován: 03 lis 2008 15:55
- Bydliště: Plzeň [ZČ]
- Kontaktovat uživatele:
Re: Prosím o pomoc bráchu Mc_Murphyho.
OK, to už je lepší. Předtím se totiž DNS neopravila.
RogueKiller zavři, ale nemaž, to všechno zfouknu nakonec. Dalším krokem bude silný a mocný ComboFix alias Dobrý sluha, ale zlý pán.
Dám Ti na něj návod až zítra, protože dneska už mi padají víka a tyto kroky nechci nechávat napůl rozjeté přes noc.
Davide, bylo by dobré, aby se PC vypnul a nechal přes noc vypnutý!! Nikdo ať na něm nic nedělá! Žádný internet ani hry, vůbec nic, dokud máme rozjetou prohlídku, OK?
Honza to pochopí a dětem a manželce to třeba vysvětlit.
RogueKiller zavři, ale nemaž, to všechno zfouknu nakonec. Dalším krokem bude silný a mocný ComboFix alias Dobrý sluha, ale zlý pán.
Dám Ti na něj návod až zítra, protože dneska už mi padají víka a tyto kroky nechci nechávat napůl rozjeté přes noc.
Davide, bylo by dobré, aby se PC vypnul a nechal přes noc vypnutý!! Nikdo ať na něm nic nedělá! Žádný internet ani hry, vůbec nic, dokud máme rozjetou prohlídku, OK?Honza to pochopí a dětem a manželce to třeba vysvětlit.
--- ... I'm moving on, I'm moving on, I'm moving on by the Spirit.
- You gave me love, I've found my identity, found my identity.
I'm moving on, I'm moving on, I'm moving on by the Spirit.- You gave me hope, I've found my identity in Christ...
Přispějete na provoz fóra?