Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:26:30, on 11.5.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\wscntfy.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\PowerKey.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\Wbutton.exe
C:\Program Files\Arcade\PCMService.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\acer\eRecovery\Monitor.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\User\Dokumenty\Stažené soubory\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.qip.ru/search?query=%s&from=IE
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LaunchAp] "C:\Program Files\Launch Manager\LaunchAp.exe"
O4 - HKLM\..\Run: [PowerKey] "C:\Program Files\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [CtrlVol] "C:\Program Files\Launch Manager\CtrlVol.exe"
O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Arcade\PCMService.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Windows\System32\Check.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: wwwzuc32.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
--
End of file - 7878 bytes
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Minulý týden AVG vyhodilo hlášku o nějakých trojanech,vyléčit to nešlo.
Skoušel jsem Spyboot - něco našel a smazal,ale nebylo to ono.
Včera jsem zkusil AD-Aware a a ani po několika hodinách nebyl schopen scan systému dokončit.
Skoušel jsem Spyboot - něco našel a smazal,ale nebylo to ono.
Včera jsem zkusil AD-Aware a a ani po několika hodinách nebyl schopen scan systému dokončit.
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Zdravím, tohle fixni v HJT :
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.qip.ru/search?query=%s&from=IE
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: wwwzuc32.exe
Fix znamená že spustíš HJT
v okně které se ti otevře klikneš na Do a system scan only
v dalším okně najdeš řádky které jsem ti vypsal,
vedle nich je čtvereček do kterého uděláš zatržítko,
pak klikneš na Fix checked které je vlevo dole,
program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.
Nakonec použij Mbam z mého podpisu.
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.qip.ru/search?query=%s&from=IE
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: wwwzuc32.exe
Fix znamená že spustíš HJT
v okně které se ti otevře klikneš na Do a system scan only
v dalším okně najdeš řádky které jsem ti vypsal,
vedle nich je čtvereček do kterého uděláš zatržítko,
pak klikneš na Fix checked které je vlevo dole,
program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.
Nakonec použij Mbam z mého podpisu.
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Dík za snahu, ale problém to nevyřešilo.Po spouštění Mbam se to po cca 15 min zastaví a scan to nedokončí. Ten proces kterej vytěžuje procesor se stále spouští
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Prosím,zkuste se na to ještě mrknout...
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Dobrý večer,
Zaskočím za kolegu.
Doporučuji odinstalovat Spybot - Search & Destroy a Ad-Aware.
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
Zaskočím za kolegu.
Doporučuji odinstalovat Spybot - Search & Destroy a Ad-Aware. Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
- Spusťte, poté do spodního políčka vložte následující skript.
Kód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT - Označte položku Pro všechny uživatele.
- Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
- Po dokončení, sem vložte logy OTL.Txt a Extras.txt
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Zhruba po hodině scanování OTL zamrznul s podivnou hláškou..
Sejmul jsem obrazovku a posílám Vám to mailem
Sejmul jsem obrazovku a posílám Vám to mailem
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
OTL logfile created on: 14.5.2010 16:45:09 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\User\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 317,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 62,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,62 Gb Total Space | 32,30 Gb Free Space | 60,24% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ACER-1F5ADAF30F
Current User Name: User
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.05.14 15:57:14 | 000,048,128 | ---- | M] (eSXi) -- C:\WINDOWS\Temp\3d43127c.tmp
PRC - [2010.05.12 20:07:44 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Dokumenty\Stažené soubory\OTL.exe
PRC - [2010.05.10 19:34:46 | 000,834,248 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2010.05.10 19:34:44 | 001,285,864 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2010.04.02 22:04:52 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.03.19 16:18:34 | 002,046,816 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009.08.18 09:23:08 | 000,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.08.18 09:23:06 | 000,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2009.08.18 09:23:04 | 000,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009.08.18 09:23:02 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2009.08.18 09:22:50 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2005.08.17 18:39:58 | 000,090,112 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2005.05.19 17:09:46 | 000,360,448 | ---- | M] (acer Inc.) -- C:\Program Files\acer\eRecovery\Monitor.exe
PRC - [2005.05.19 14:45:52 | 000,069,632 | ---- | M] (Wistron) -- C:\Program Files\Launch Manager\HotkeyApp.exe
PRC - [2005.04.18 11:41:34 | 000,081,920 | ---- | M] () -- C:\Program Files\Launch Manager\WButton.exe
PRC - [2005.03.30 15:29:48 | 000,032,768 | ---- | M] () -- C:\Program Files\Launch Manager\LaunchAp.exe
PRC - [2005.03.09 18:59:26 | 000,049,152 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Arcade\PCMService.exe
PRC - [2004.10.11 10:47:02 | 000,245,760 | ---- | M] () -- C:\Program Files\Launch Manager\OSDCtrl.exe
PRC - [2004.10.05 16:25:10 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004.08.18 05:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004.08.16 15:17:20 | 001,287,168 | ---- | M] (OSA Technologies Inc.) -- C:\Acer\eManager\anbmServ.exe
PRC - [2004.06.14 11:49:02 | 000,187,392 | ---- | M] () -- C:\WINDOWS\Acer.scr
PRC - [2002.08.30 15:02:48 | 000,094,208 | ---- | M] () -- C:\Program Files\Launch Manager\Powerkey.exe
========== Modules (SafeList) ==========
MOD - [2010.05.12 20:07:44 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Dokumenty\Stažené soubory\OTL.exe
MOD - [2004.10.01 10:44:30 | 000,069,722 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll
MOD - [2004.08.27 16:42:36 | 000,049,152 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll
MOD - [2004.08.18 05:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.18 05:00:00 | 001,028,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll
MOD - [2004.08.18 05:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2004.08.18 05:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll
MOD - [2004.08.18 05:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll
========== Win32 Services (SafeList) ==========
SRV - [2010.05.10 19:34:44 | 001,285,864 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2009.08.18 09:23:02 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009.08.18 09:22:50 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2004.08.16 15:17:20 | 001,287,168 | ---- | M] (OSA Technologies Inc.) [Auto | Running] -- C:\Acer\eManager\anbmServ.exe -- (anbmService)
========== Driver Services (SafeList) ==========
DRV - [2010.02.04 17:53:04 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009.08.18 09:23:06 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009.08.18 09:23:06 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009.05.08 10:46:46 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009.02.27 07:16:58 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2005.08.19 17:31:52 | 003,644,800 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005.04.05 21:58:48 | 001,035,776 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.03.04 16:37:26 | 000,008,704 | ---- | M] (Avocent/OSA Technologies Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio)
DRV - [2005.01.14 15:57:16 | 000,004,010 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm)
DRV - [2005.01.13 14:46:16 | 000,069,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\acer\eRecovery\int15.sys -- (int15.sys)
DRV - [2005.01.10 15:47:14 | 000,449,888 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2004.12.22 01:32:12 | 000,369,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004.12.17 17:14:44 | 000,013,952 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\UBHelper.sys -- (UBHelper)
DRV - [2004.12.15 15:18:30 | 000,200,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2004.12.15 15:18:28 | 000,703,232 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004.12.15 15:18:26 | 001,038,208 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2004.12.02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.10.05 16:17:32 | 000,185,824 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2004.09.14 02:40:56 | 000,146,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2004.08.03 23:07:44 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2004.08.03 23:07:44 | 000,041,088 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2004.08.03 23:00:52 | 000,028,672 | ---- | M] (National Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nscirda.sys -- (NSCIRDA)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003.12.05 18:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.04.28 11:27:06 | 000,009,867 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\HOTKEY.sys -- (Hotkey)
DRV - [2001.10.24 11:54:40 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001.08.17 22:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001.08.17 22:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001.08.17 22:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001.08.17 22:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001.08.17 22:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001.08.17 21:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001.08.17 21:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001.08.17 21:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001.08.17 21:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001.08.17 21:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001.08.17 21:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001.08.17 21:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001.08.17 21:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001.08.17 21:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2000.12.19 18:29:52 | 000,002,343 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Launch Manager\POWERKEY.SYS -- (POWERKEY)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009.03.02 22:51:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009.12.29 10:39:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.03.02 22:23:30 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.03.02 22:23:30 | 000,000,000 | ---D | M]
[2009.03.02 22:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Mozilla\Extensions
[2009.03.02 22:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\kdf2207o.default\extensions
[2009.03.02 23:10:40 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\kdf2207o.default\searchplugins\qipsearch.xml
[2009.03.02 22:23:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.03.13 09:37:18 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.13 09:37:18 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.13 09:37:18 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.13 09:37:18 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.13 09:37:18 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2004.08.18 05:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe (Wistron)
O4 - HKLM..\Run: [eRecoveryService] C:\WINDOWS\system32\Check.exe (acer Inc.)
O4 - HKLM..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe ()
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe ()
O4 - HKLM..\Run: [PCMService] C:\Program Files\Arcade\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [PowerKey] C:\Program Files\Launch Manager\PowerKey.exe ()
O4 - HKLM..\Run: [preload] C:\WINDOWS\RUNXMLPL.EXE (Wistron)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\Wbutton.exe ()
O4 - Startup: C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\AcerTX.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\AcerTX.bmp
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{db8567de-4c85-11df-b438-0014a44de4e9}\Shell\AutoRun\command - "" = E:\Toshiba\Launcher\start.exe -- File not found
O33 - MountPoints2\{ed54d92f-48a5-11df-b430-0014a44de4e9}\Shell\AutoRun\command - "" = F:\InstallTomTomHOME.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.05.11 22:32:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Malwarebytes
[2010.05.11 22:31:38 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.05.11 22:31:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.05.11 22:31:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.05.11 22:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.05.10 19:36:48 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010.05.10 19:36:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.05.10 19:36:25 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.10 19:29:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2010.05.10 19:26:54 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010.05.10 19:26:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
[2010.05.08 20:22:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.05.08 20:22:55 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.04.28 18:55:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dokumenty\Výsledky hledání ZME5
[2010.04.28 18:55:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dokumenty\Alba ZME5
[2010.04.28 18:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Zoner
[2010.04.28 18:54:42 | 000,000,000 | ---D | C] -- C:\Program Files\Zoner
[2010.04.28 18:54:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010.04.27 19:43:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Jpeg Resampler
[2010.04.27 19:43:43 | 000,000,000 | ---D | C] -- C:\Program Files\JPEG Resampler
[2010.04.27 18:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Photo Resizer
[2010.04.27 18:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Plocha\nepojmenovaná složka
[2010.04.20 16:39:54 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010.04.20 16:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\uTorrent
[2010.04.20 16:20:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\DivX
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.05.14 17:34:52 | 000,859,648 | ---- | M] () -- C:\WINDOWS\System32\drivers\tsylszz.sys
[2010.05.14 17:04:04 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.14 16:05:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.14 15:55:56 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.14 15:55:12 | 000,000,342 | ---- | M] () -- C:\WINDOWS\System32\eRLog.ini
[2010.05.14 15:53:48 | 000,000,096 | ---- | M] () -- C:\WINDOWS\ComponentList.xml
[2010.05.14 15:53:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.05.14 15:53:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.05.14 15:53:12 | 1071,878,144 | -HS- | M] () -- C:\hiberfil.sys
[2010.05.13 22:45:18 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010.05.13 22:44:54 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2010.05.13 22:24:20 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\User\Plocha\~$razovka.rtf
[2010.05.13 18:33:52 | 004,840,038 | ---- | M] () -- C:\Documents and Settings\User\Plocha\obrazovka.rtf
[2010.05.11 22:31:44 | 000,000,604 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.05.11 15:57:56 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Lark Anti-Spyware.lnk
[2010.05.10 19:36:20 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.10 19:29:18 | 000,000,775 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Ad-Aware.lnk
[2010.05.08 19:57:08 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\User\Data aplikací\avdrn.dat
[2010.04.29 21:07:58 | 000,001,721 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.28 22:12:22 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.28 18:54:48 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Zoner Media Explorer 5.lnk
[2010.04.27 18:59:02 | 000,000,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FastStone Photo Resizer.lnk
[2010.04.27 18:54:38 | 000,002,317 | ---- | M] () -- C:\Documents and Settings\User\Dokumenty\cpicture.xml
[2010.04.27 18:52:36 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.20 16:40:04 | 000,000,538 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\µTorrent.lnk
[2010.04.20 16:11:08 | 000,001,823 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.05.13 22:24:19 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\User\Plocha\~$razovka.rtf
[2010.05.13 18:33:49 | 004,840,038 | ---- | C] () -- C:\Documents and Settings\User\Plocha\obrazovka.rtf
[2010.05.11 22:31:42 | 000,000,604 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.05.11 09:07:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\tsylszz.sys
[2010.05.11 09:07:06 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\qvjsge.dat
[2010.05.10 19:39:41 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.10 19:29:17 | 000,000,775 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Ad-Aware.lnk
[2010.05.08 19:57:09 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\NetworkService\Data aplikací\qvjsge.dat
[2010.05.08 19:57:06 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\User\Data aplikací\avdrn.dat
[2010.04.28 18:54:46 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Zoner Media Explorer 5.lnk
[2010.04.27 18:59:01 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FastStone Photo Resizer.lnk
[2010.04.27 18:51:10 | 000,002,317 | ---- | C] () -- C:\Documents and Settings\User\Dokumenty\cpicture.xml
[2010.04.20 16:40:03 | 000,000,538 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\µTorrent.lnk
[2010.04.20 16:11:06 | 000,001,823 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2009.12.05 11:33:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.03.08 13:37:42 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.02.27 07:16:52 | 000,000,342 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.04.11 20:04:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.04.11 18:49:00 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMP3.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2005.04.11 18:43:36 | 000,000,052 | ---- | C] () -- C:\WINDOWS\Apire Series.ini
[2005.04.11 18:41:12 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005.04.11 18:40:43 | 000,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys
[2005.04.11 18:35:06 | 000,000,033 | ---- | C] () -- C:\WINDOWS\Acer.ini
[2005.04.11 18:35:04 | 000,001,150 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.04.11 18:35:03 | 000,872,448 | ---- | C] () -- C:\WINDOWS\iconv.dll
[2005.04.11 18:35:03 | 000,743,424 | ---- | C] () -- C:\WINDOWS\libxml2.dll
[2005.04.11 18:35:03 | 000,081,920 | ---- | C] () -- C:\WINDOWS\Capsule.dll
[2004.12.17 17:14:44 | 000,013,952 | ---- | C] () -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2004.09.17 12:08:27 | 000,003,568 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004.01.14 07:46:34 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.12.26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001.09.03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001.07.30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001.07.23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1980.01.01 00:00:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[1980.01.01 00:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
========== LOP Check ==========
[2009.06.12 14:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
[2010.05.10 19:29:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2009.06.12 14:35:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVGTOOLBAR
[2009.03.02 22:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\AVGTOOLBAR
[2010.04.20 16:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\uTorrent
[2010.04.27 19:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Jpeg Resampler
[2010.04.28 18:55:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Zoner
[2010.05.14 15:55:56 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
========== Purity Check ==========
< End of report >
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\User\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 317,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 62,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,62 Gb Total Space | 32,30 Gb Free Space | 60,24% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ACER-1F5ADAF30F
Current User Name: User
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.05.14 15:57:14 | 000,048,128 | ---- | M] (eSXi) -- C:\WINDOWS\Temp\3d43127c.tmp
PRC - [2010.05.12 20:07:44 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Dokumenty\Stažené soubory\OTL.exe
PRC - [2010.05.10 19:34:46 | 000,834,248 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2010.05.10 19:34:44 | 001,285,864 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2010.04.02 22:04:52 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.03.19 16:18:34 | 002,046,816 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009.08.18 09:23:08 | 000,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.08.18 09:23:06 | 000,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2009.08.18 09:23:04 | 000,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009.08.18 09:23:02 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2009.08.18 09:22:50 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2005.08.17 18:39:58 | 000,090,112 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2005.05.19 17:09:46 | 000,360,448 | ---- | M] (acer Inc.) -- C:\Program Files\acer\eRecovery\Monitor.exe
PRC - [2005.05.19 14:45:52 | 000,069,632 | ---- | M] (Wistron) -- C:\Program Files\Launch Manager\HotkeyApp.exe
PRC - [2005.04.18 11:41:34 | 000,081,920 | ---- | M] () -- C:\Program Files\Launch Manager\WButton.exe
PRC - [2005.03.30 15:29:48 | 000,032,768 | ---- | M] () -- C:\Program Files\Launch Manager\LaunchAp.exe
PRC - [2005.03.09 18:59:26 | 000,049,152 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Arcade\PCMService.exe
PRC - [2004.10.11 10:47:02 | 000,245,760 | ---- | M] () -- C:\Program Files\Launch Manager\OSDCtrl.exe
PRC - [2004.10.05 16:25:10 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004.08.18 05:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004.08.16 15:17:20 | 001,287,168 | ---- | M] (OSA Technologies Inc.) -- C:\Acer\eManager\anbmServ.exe
PRC - [2004.06.14 11:49:02 | 000,187,392 | ---- | M] () -- C:\WINDOWS\Acer.scr
PRC - [2002.08.30 15:02:48 | 000,094,208 | ---- | M] () -- C:\Program Files\Launch Manager\Powerkey.exe
========== Modules (SafeList) ==========
MOD - [2010.05.12 20:07:44 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Dokumenty\Stažené soubory\OTL.exe
MOD - [2004.10.01 10:44:30 | 000,069,722 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll
MOD - [2004.08.27 16:42:36 | 000,049,152 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll
MOD - [2004.08.18 05:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.18 05:00:00 | 001,028,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll
MOD - [2004.08.18 05:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2004.08.18 05:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll
MOD - [2004.08.18 05:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll
========== Win32 Services (SafeList) ==========
SRV - [2010.05.10 19:34:44 | 001,285,864 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2009.08.18 09:23:02 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009.08.18 09:22:50 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2004.08.16 15:17:20 | 001,287,168 | ---- | M] (OSA Technologies Inc.) [Auto | Running] -- C:\Acer\eManager\anbmServ.exe -- (anbmService)
========== Driver Services (SafeList) ==========
DRV - [2010.02.04 17:53:04 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009.08.18 09:23:06 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009.08.18 09:23:06 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009.05.08 10:46:46 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009.02.27 07:16:58 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2005.08.19 17:31:52 | 003,644,800 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005.04.05 21:58:48 | 001,035,776 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005.03.04 16:37:26 | 000,008,704 | ---- | M] (Avocent/OSA Technologies Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio)
DRV - [2005.01.14 15:57:16 | 000,004,010 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm)
DRV - [2005.01.13 14:46:16 | 000,069,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\acer\eRecovery\int15.sys -- (int15.sys)
DRV - [2005.01.10 15:47:14 | 000,449,888 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2004.12.22 01:32:12 | 000,369,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004.12.17 17:14:44 | 000,013,952 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\UBHelper.sys -- (UBHelper)
DRV - [2004.12.15 15:18:30 | 000,200,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2004.12.15 15:18:28 | 000,703,232 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004.12.15 15:18:26 | 001,038,208 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2004.12.02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.10.05 16:17:32 | 000,185,824 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2004.09.14 02:40:56 | 000,146,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2004.08.03 23:07:44 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2004.08.03 23:07:44 | 000,041,088 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2004.08.03 23:00:52 | 000,028,672 | ---- | M] (National Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nscirda.sys -- (NSCIRDA)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003.12.05 18:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.04.28 11:27:06 | 000,009,867 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\HOTKEY.sys -- (Hotkey)
DRV - [2001.10.24 11:54:40 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001.08.17 22:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001.08.17 22:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001.08.17 22:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001.08.17 22:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001.08.17 22:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001.08.17 21:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001.08.17 21:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001.08.17 21:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001.08.17 21:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001.08.17 21:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001.08.17 21:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001.08.17 21:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001.08.17 21:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001.08.17 21:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2000.12.19 18:29:52 | 000,002,343 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Launch Manager\POWERKEY.SYS -- (POWERKEY)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009.03.02 22:51:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009.12.29 10:39:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.03.02 22:23:30 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.03.02 22:23:30 | 000,000,000 | ---D | M]
[2009.03.02 22:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Mozilla\Extensions
[2009.03.02 22:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\kdf2207o.default\extensions
[2009.03.02 23:10:40 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\kdf2207o.default\searchplugins\qipsearch.xml
[2009.03.02 22:23:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.03.13 09:37:18 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.13 09:37:18 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.13 09:37:18 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.13 09:37:18 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.13 09:37:18 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2004.08.18 05:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe (Wistron)
O4 - HKLM..\Run: [eRecoveryService] C:\WINDOWS\system32\Check.exe (acer Inc.)
O4 - HKLM..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe ()
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe ()
O4 - HKLM..\Run: [PCMService] C:\Program Files\Arcade\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [PowerKey] C:\Program Files\Launch Manager\PowerKey.exe ()
O4 - HKLM..\Run: [preload] C:\WINDOWS\RUNXMLPL.EXE (Wistron)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\Wbutton.exe ()
O4 - Startup: C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\AcerTX.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\AcerTX.bmp
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{db8567de-4c85-11df-b438-0014a44de4e9}\Shell\AutoRun\command - "" = E:\Toshiba\Launcher\start.exe -- File not found
O33 - MountPoints2\{ed54d92f-48a5-11df-b430-0014a44de4e9}\Shell\AutoRun\command - "" = F:\InstallTomTomHOME.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.05.11 22:32:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Malwarebytes
[2010.05.11 22:31:38 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.05.11 22:31:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.05.11 22:31:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.05.11 22:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.05.10 19:36:48 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2010.05.10 19:36:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.05.10 19:36:25 | 000,095,024 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.10 19:29:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2010.05.10 19:26:54 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2010.05.10 19:26:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
[2010.05.08 20:22:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2010.05.08 20:22:55 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010.04.28 18:55:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dokumenty\Výsledky hledání ZME5
[2010.04.28 18:55:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dokumenty\Alba ZME5
[2010.04.28 18:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Zoner
[2010.04.28 18:54:42 | 000,000,000 | ---D | C] -- C:\Program Files\Zoner
[2010.04.28 18:54:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010.04.27 19:43:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\Jpeg Resampler
[2010.04.27 19:43:43 | 000,000,000 | ---D | C] -- C:\Program Files\JPEG Resampler
[2010.04.27 18:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Photo Resizer
[2010.04.27 18:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Plocha\nepojmenovaná složka
[2010.04.20 16:39:54 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010.04.20 16:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\uTorrent
[2010.04.20 16:20:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Data aplikací\DivX
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.05.14 17:34:52 | 000,859,648 | ---- | M] () -- C:\WINDOWS\System32\drivers\tsylszz.sys
[2010.05.14 17:04:04 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.14 16:05:02 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.14 15:55:56 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.14 15:55:12 | 000,000,342 | ---- | M] () -- C:\WINDOWS\System32\eRLog.ini
[2010.05.14 15:53:48 | 000,000,096 | ---- | M] () -- C:\WINDOWS\ComponentList.xml
[2010.05.14 15:53:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.05.14 15:53:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.05.14 15:53:12 | 1071,878,144 | -HS- | M] () -- C:\hiberfil.sys
[2010.05.13 22:45:18 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010.05.13 22:44:54 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2010.05.13 22:24:20 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\User\Plocha\~$razovka.rtf
[2010.05.13 18:33:52 | 004,840,038 | ---- | M] () -- C:\Documents and Settings\User\Plocha\obrazovka.rtf
[2010.05.11 22:31:44 | 000,000,604 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.05.11 15:57:56 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Lark Anti-Spyware.lnk
[2010.05.10 19:36:20 | 000,095,024 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2010.05.10 19:29:18 | 000,000,775 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Ad-Aware.lnk
[2010.05.08 19:57:08 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\User\Data aplikací\avdrn.dat
[2010.04.29 21:07:58 | 000,001,721 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.28 22:12:22 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.28 18:54:48 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Zoner Media Explorer 5.lnk
[2010.04.27 18:59:02 | 000,000,700 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FastStone Photo Resizer.lnk
[2010.04.27 18:54:38 | 000,002,317 | ---- | M] () -- C:\Documents and Settings\User\Dokumenty\cpicture.xml
[2010.04.27 18:52:36 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.20 16:40:04 | 000,000,538 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\µTorrent.lnk
[2010.04.20 16:11:08 | 000,001,823 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.05.13 22:24:19 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\User\Plocha\~$razovka.rtf
[2010.05.13 18:33:49 | 004,840,038 | ---- | C] () -- C:\Documents and Settings\User\Plocha\obrazovka.rtf
[2010.05.11 22:31:42 | 000,000,604 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.05.11 09:07:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\tsylszz.sys
[2010.05.11 09:07:06 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\qvjsge.dat
[2010.05.10 19:39:41 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010.05.10 19:29:17 | 000,000,775 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Ad-Aware.lnk
[2010.05.08 19:57:09 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\NetworkService\Data aplikací\qvjsge.dat
[2010.05.08 19:57:06 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\User\Data aplikací\avdrn.dat
[2010.04.28 18:54:46 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Zoner Media Explorer 5.lnk
[2010.04.27 18:59:01 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FastStone Photo Resizer.lnk
[2010.04.27 18:51:10 | 000,002,317 | ---- | C] () -- C:\Documents and Settings\User\Dokumenty\cpicture.xml
[2010.04.20 16:40:03 | 000,000,538 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\µTorrent.lnk
[2010.04.20 16:11:06 | 000,001,823 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2009.12.05 11:33:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.03.08 13:37:42 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.02.27 07:16:52 | 000,000,342 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.04.11 20:04:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005.04.11 18:49:00 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMP3.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIFCD3.dll
[2005.04.11 18:47:59 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll
[2005.04.11 18:43:36 | 000,000,052 | ---- | C] () -- C:\WINDOWS\Apire Series.ini
[2005.04.11 18:41:12 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005.04.11 18:40:43 | 000,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys
[2005.04.11 18:35:06 | 000,000,033 | ---- | C] () -- C:\WINDOWS\Acer.ini
[2005.04.11 18:35:04 | 000,001,150 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005.04.11 18:35:03 | 000,872,448 | ---- | C] () -- C:\WINDOWS\iconv.dll
[2005.04.11 18:35:03 | 000,743,424 | ---- | C] () -- C:\WINDOWS\libxml2.dll
[2005.04.11 18:35:03 | 000,081,920 | ---- | C] () -- C:\WINDOWS\Capsule.dll
[2004.12.17 17:14:44 | 000,013,952 | ---- | C] () -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2004.09.17 12:08:27 | 000,003,568 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004.01.14 07:46:34 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.12.26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001.09.03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001.07.30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001.07.23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1980.01.01 00:00:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[1980.01.01 00:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
========== LOP Check ==========
[2009.06.12 14:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
[2010.05.10 19:29:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2009.06.12 14:35:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVGTOOLBAR
[2009.03.02 22:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\AVGTOOLBAR
[2010.04.20 16:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\uTorrent
[2010.04.27 19:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Jpeg Resampler
[2010.04.28 18:55:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Data aplikací\Zoner
[2010.05.14 15:55:56 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
========== Purity Check ==========
< End of report >
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
OTL Extras logfile created on: 14.5.2010 16:45:09 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\User\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 317,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 62,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,62 Gb Total Space | 32,30 Gb Free Space | 60,24% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ACER-1F5ADAF30F
Current User Name: User
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JpegResamplerDir] -- "C:\Program Files\JPEG Resampler\JpegResampler.exe" "%1" (David Macek)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\WINDOWS\System32\dpvsetup.exe" = C:\WINDOWS\System32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\QIP\qip.exe" = C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- (The Author of QIP)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08C0729E-3E50-11DF-9D81-005056806466}" = Google Earth
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Arcade 3.0
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60EC8EF5-BD58-4675-A4E2-95CA18D8392E}" = Barbie(TM) 12 tančících princezen
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{92EF9F7D-D771-42E5-B235-B434AB2BF8F3}_is1" = Lark AntiSpyware 4.0
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1029-7B44-A70500000002}" = Adobe Reader 7.0.5 - Czech
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B06B842F-2450-494F-BBDE-217CDC151A37}" = NTI Backup NOW! 4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B48F9C44-C904-4FA3-984D-F65AE4C49745}" = Zoner Media Explorer 5
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{D0846526-66DD-4DC9-A02C-98F9A2806812}" = Launch Manager V1.0.8.3
"{DC1E4629-CB2E-4AC9-A533-D3795B8DB715}_is1" = Lark AntiSpyware 3.0
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457}" = TIxx21/x515
"{E98412A2-8AB2-4BCE-AB3F-384B0239557E}" = NTI CD & DVD-Maker
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Ad-Aware" = Ad-Aware
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"AVG8Uninstall" = AVG Free 8.5
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Network Adapter
"BSPlayer1" = BSPlayer
"CNXT_MODEM_PCI_VEN_1002&DEV_4378&SUBSYS_00801025" = SoftV90 Data Fax Modem with SmartCP
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"CrazyBirds_is1" = Crazy Birds
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"FastStone Photo Resizer" = FastStone Photo Resizer 2.4
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"InstallShield_{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"InstallShield_{B06B842F-2450-494F-BBDE-217CDC151A37}" = NTI Backup NOW! 4
"InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457}" = Texas Instruments PCIxx21/x515 drivers.
"InstallShield_{E98412A2-8AB2-4BCE-AB3F-384B0239557E}" = NTI CD & DVD-Maker Gold
"IrfanView" = IrfanView (remove only)
"JPEG Resampler_is1" = JPEG Resampler Vs 4.7
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"RealPlayer 12.0" = RealPlayer
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"uTorrent" = µTorrent
"Winamp" = Winamp
"Windows Essentials Media Codec Pack" = Windows Essentials Media Codec Pack 2.3d
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinRAR archiver" = WinRAR
"Zoo Tycoon 1.0" = Microsoft Zoo Tycoon
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8092
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 11.5.2010 9:48:29 | Computer Name = ACER-1F5ADAF30F | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 11.5.2010 9:48:31 | Computer Name = ACER-1F5ADAF30F | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 11.5.2010 9:51:10 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 10:40:18 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace avgui.exe, verze 8.5.0.437, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 14:06:46 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 14:06:53 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 12.5.2010 17:22:33 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.4.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 13.5.2010 16:05:55 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.4.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 13.5.2010 16:25:09 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace WINWORD.EXE, verze 11.0.5604.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 14.5.2010 11:05:49 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 9.5.2010 14:51:02 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 9.5.2010 14:51:02 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 10.5.2010 12:50:58 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 10.5.2010 12:50:58 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 10.5.2010 12:54:18 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Notebook Manager Service.
Error - 11.5.2010 3:07:30 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Microsoft Kernel Acoustic Echo Canceller neuspěla při spuštění
v důsledku následující chyby: %%5
Error - 11.5.2010 3:07:32 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Atheros Wireless Network Adapter Service neuspěla při spuštění
v důsledku následující chyby: %%5
Error - 11.5.2010 3:07:37 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Ovladač asynchronních médií připojení RAS neuspěla při spuštění
v důsledku následující chyby: %%31
Error - 11.5.2010 9:50:44 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 11.5.2010 9:50:44 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
< End of report >
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\User\Dokumenty\Stažené soubory
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 317,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 62,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 53,62 Gb Total Space | 32,30 Gb Free Space | 60,24% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ACER-1F5ADAF30F
Current User Name: User
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JpegResamplerDir] -- "C:\Program Files\JPEG Resampler\JpegResampler.exe" "%1" (David Macek)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\WINDOWS\System32\dpvsetup.exe" = C:\WINDOWS\System32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\QIP\qip.exe" = C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- (The Author of QIP)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08C0729E-3E50-11DF-9D81-005056806466}" = Google Earth
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Arcade 3.0
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60EC8EF5-BD58-4675-A4E2-95CA18D8392E}" = Barbie(TM) 12 tančících princezen
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{92EF9F7D-D771-42E5-B235-B434AB2BF8F3}_is1" = Lark AntiSpyware 4.0
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1029-7B44-A70500000002}" = Adobe Reader 7.0.5 - Czech
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B06B842F-2450-494F-BBDE-217CDC151A37}" = NTI Backup NOW! 4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B48F9C44-C904-4FA3-984D-F65AE4C49745}" = Zoner Media Explorer 5
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{D0846526-66DD-4DC9-A02C-98F9A2806812}" = Launch Manager V1.0.8.3
"{DC1E4629-CB2E-4AC9-A533-D3795B8DB715}_is1" = Lark AntiSpyware 3.0
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457}" = TIxx21/x515
"{E98412A2-8AB2-4BCE-AB3F-384B0239557E}" = NTI CD & DVD-Maker
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Ad-Aware" = Ad-Aware
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"AVG8Uninstall" = AVG Free 8.5
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Network Adapter
"BSPlayer1" = BSPlayer
"CNXT_MODEM_PCI_VEN_1002&DEV_4378&SUBSYS_00801025" = SoftV90 Data Fax Modem with SmartCP
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"CrazyBirds_is1" = Crazy Birds
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"FastStone Photo Resizer" = FastStone Photo Resizer 2.4
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"InstallShield_{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"InstallShield_{B06B842F-2450-494F-BBDE-217CDC151A37}" = NTI Backup NOW! 4
"InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457}" = Texas Instruments PCIxx21/x515 drivers.
"InstallShield_{E98412A2-8AB2-4BCE-AB3F-384B0239557E}" = NTI CD & DVD-Maker Gold
"IrfanView" = IrfanView (remove only)
"JPEG Resampler_is1" = JPEG Resampler Vs 4.7
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"RealPlayer 12.0" = RealPlayer
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"uTorrent" = µTorrent
"Winamp" = Winamp
"Windows Essentials Media Codec Pack" = Windows Essentials Media Codec Pack 2.3d
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinRAR archiver" = WinRAR
"Zoo Tycoon 1.0" = Microsoft Zoo Tycoon
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8092
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 11.5.2010 9:48:29 | Computer Name = ACER-1F5ADAF30F | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 11.5.2010 9:48:31 | Computer Name = ACER-1F5ADAF30F | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 11.5.2010 9:51:10 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 10:40:18 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace avgui.exe, verze 8.5.0.437, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 14:06:46 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.5.2010 14:06:53 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 12.5.2010 17:22:33 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.4.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 13.5.2010 16:05:55 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.4.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 13.5.2010 16:25:09 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace WINWORD.EXE, verze 11.0.5604.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 14.5.2010 11:05:49 | Computer Name = ACER-1F5ADAF30F | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 9.5.2010 14:51:02 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 9.5.2010 14:51:02 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 10.5.2010 12:50:58 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 10.5.2010 12:50:58 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 10.5.2010 12:54:18 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Notebook Manager Service.
Error - 11.5.2010 3:07:30 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Microsoft Kernel Acoustic Echo Canceller neuspěla při spuštění
v důsledku následující chyby: %%5
Error - 11.5.2010 3:07:32 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Atheros Wireless Network Adapter Service neuspěla při spuštění
v důsledku následující chyby: %%5
Error - 11.5.2010 3:07:37 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7000
Description = Služba Ovladač asynchronních médií připojení RAS neuspěla při spuštění
v důsledku následující chyby: %%31
Error - 11.5.2010 9:50:44 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7031
Description = Služba Spouštěč procesů serveru DCOM byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat
počítač.
Error - 11.5.2010 9:50:44 | Computer Name = ACER-1F5ADAF30F | Source = Service Control Manager | ID = 7034
Description = Služba Terminálová služba byla neočekávaně ukončena. Tento stav nastal
již 1krát.
< End of report >
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Spusťte OTL a do spodního okna vložte následující skript.
Kód: Vybrat vše
:OTL
O3 - HKU\S-1-5-21-207157022-2654232546-3913969090-1005\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O4 - Startup: C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe ()
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2010.05.14 17:34:52 | 000,859,648 | ---- | M] () -- C:\WINDOWS\System32\drivers\tsylszz.sys
[2010.05.11 09:07:06 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\LocalService\Data aplikací\qvjsge.dat
[2010.05.08 19:57:09 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\NetworkService\Data aplikací\qvjsge.dat
[2010.05.08 19:57:06 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\User\Data aplikací\avdrn.dat
PRC - [2010.05.14 15:57:14 | 000,048,128 | ---- | M] (eSXi) -- C:\WINDOWS\Temp\3d43127c.tmp
:Files
C:\WINDOWS\Temp
:Commands
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
All processes killed
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}\ not found.
File move failed. C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe scheduled to be moved on reboot.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
File C:\WINDOWS\System32\drivers\tsylszz.sys not found.
C:\Documents and Settings\LocalService\Data aplikací\qvjsge.dat moved successfully.
C:\Documents and Settings\NetworkService\Data aplikací\qvjsge.dat moved successfully.
C:\Documents and Settings\User\Data aplikací\avdrn.dat moved successfully.
No active process named 3d43127c.tmp was found!
========== FILES ==========
C:\WINDOWS\Temp\CR_AD.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_C.tmp folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData\Google\Custom Buttons folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData\Google folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\lang folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\shaders folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\xml folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\keyboard folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\hud folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\controller folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\planet folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\aircraft folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\pushpin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\shapes folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\paddle folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\lang folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\shaders folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\xml folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\um.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\us.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\yt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ws.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ua.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\va.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\wf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\za.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\to.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\th.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ve.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ye.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ug.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\td.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ps.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\me.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\re.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\si.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\rs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\py.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ni.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ru.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\so.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ro.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ms.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\st.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\my.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\qa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ph.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mx.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\na.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pe.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\md.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\se.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\rw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\no.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\np.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ng.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\om.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ml.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ne.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ly.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\li.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\je.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\it.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\im.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\do.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\km.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ki.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ht.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\io.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\in.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ky.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\eh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ls.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\il.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ec.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\id.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ge.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ga.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\is.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ma.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ie.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\er.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ee.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\la.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\et.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\eg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\de.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ir.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\iq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ke.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ck.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\at.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cx.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\as.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ao.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ai.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ax.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\aw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\br.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\aq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ad.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ca.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\be.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\an.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ag.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ba.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ae.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\az.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ci.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\au.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ar.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\af.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ch.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\co.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\by.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\am.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\al.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\en.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bg.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\el.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ar.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fil.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cs.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ca.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\da.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\de.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es-419.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\th.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uk.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\he.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ja.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lt.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt-PT.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lv.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\id.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sv.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hu.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\it.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ro.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sk.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\no.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\keyboard folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\hud folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\controller folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\planet folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\aircraft folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ru.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zh-Hant.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zh-Hans.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ko.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pushpin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\shapes folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\paddle folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files folder moved successfully.
C:\WINDOWS\Temp\._msige52 folder moved successfully.
C:\WINDOWS\Temp\CR_E1.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_74.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_1B.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_19.tmp folder moved successfully.
C:\WINDOWS\Temp\chrome_11965 folder moved successfully.
C:\WINDOWS\Temp\chrome_22723 folder moved successfully.
C:\WINDOWS\Temp\CR_8.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_32.tmp folder moved successfully.
C:\WINDOWS\Temp\chrome_7482 folder moved successfully.
C:\WINDOWS\Temp\CR_B3.tmp folder moved successfully.
C:\WINDOWS\Temp\History\History.IE5 folder moved successfully.
C:\WINDOWS\Temp\History folder moved successfully.
C:\WINDOWS\Temp\Cookies folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\63L7ASFA folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\UVIBI7I9 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\8NOPURST folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\U953BE13 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files folder moved successfully.
C:\WINDOWS\Temp\chrome_15038 folder moved successfully.
C:\WINDOWS\Temp\CR_D.tmp folder moved successfully.
C:\WINDOWS\Temp folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: All Users
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
User: User
->Temp folder emptied: 26480881 bytes
->Temporary Internet Files folder emptied: 11182630 bytes
->FireFox cache emptied: 54797908 bytes
->Google Chrome cache emptied: 205531228 bytes
->Flash cache emptied: 87768 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 966184724 bytes
Total Files Cleaned = 1 206,00 mb
[EMPTYFLASH]
User: Default User
User: All Users
User: NetworkService
User: LocalService
User: User
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.
OTL by OldTimer - Version 3.2.4.1 log created on 05142010_181009
Files\Folders moved on Reboot...
C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe moved successfully.
Registry entries deleted on Reboot...
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-207157022-2654232546-3913969090-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}\ not found.
File move failed. C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe scheduled to be moved on reboot.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
File C:\WINDOWS\System32\drivers\tsylszz.sys not found.
C:\Documents and Settings\LocalService\Data aplikací\qvjsge.dat moved successfully.
C:\Documents and Settings\NetworkService\Data aplikací\qvjsge.dat moved successfully.
C:\Documents and Settings\User\Data aplikací\avdrn.dat moved successfully.
No active process named 3d43127c.tmp was found!
========== FILES ==========
C:\WINDOWS\Temp\CR_AD.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_C.tmp folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData\Google\Custom Buttons folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData\Google folder moved successfully.
C:\WINDOWS\Temp\._msige52\LocalAppData folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\lang folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\shaders folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\xml folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\keyboard folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\hud folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\controller folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\planet folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim\aircraft folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\flightsim folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\pushpin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\shapes folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res\paddle folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin\res folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\plugin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\lang folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\shaders folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\xml folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\um.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\us.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\yt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ws.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ua.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\va.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\wf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\za.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\to.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\th.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ve.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ye.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ug.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\td.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ps.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\me.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\re.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\si.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\rs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\py.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ni.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ru.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\so.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ro.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ms.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\st.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\my.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\qa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ph.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mx.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\na.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pe.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\md.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\se.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\rw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pa.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\no.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\np.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ng.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\om.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ml.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ne.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ly.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\li.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\je.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\it.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\im.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\do.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\km.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ki.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\mc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ht.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\io.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\in.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ky.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\eh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ls.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\il.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ec.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\id.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ge.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ga.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\kg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\is.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ma.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jp.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ie.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\er.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ee.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dk.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\la.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\jo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\et.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\eg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\dz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\de.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ir.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\iq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ke.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\gh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ck.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bb.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\at.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cc.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cx.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\as.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ao.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ai.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ax.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\aw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\br.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\aq.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cl.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ad.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ca.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\be.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\an.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ag.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ba.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bz.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bs.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ae.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\az.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ci.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bt.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bh.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\au.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ar.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cv.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cr.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bf.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bo.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bj.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bi.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\af.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cu.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bw.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bd.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ch.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\co.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bg.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cn.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\by.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\am.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\al.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cy.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cm.country folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\en.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\bg.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\el.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ar.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fil.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\cs.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ca.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\da.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\de.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\es-419.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\th.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\uk.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\he.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ja.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\vi.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lt.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pt-PT.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\lv.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\nl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\tr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\fr.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\id.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sv.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\hu.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\it.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ro.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sk.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\no.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\sl.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\keyboard folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\hud folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\controller folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\planet folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim\aircraft folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\flightsim folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ru.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zh-Hant.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\zh-Hans.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\ko.locale folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\pushpin folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\shapes folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res\paddle folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client\res folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth\client folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google\Google Earth folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files\Google folder moved successfully.
C:\WINDOWS\Temp\._msige52\program files folder moved successfully.
C:\WINDOWS\Temp\._msige52 folder moved successfully.
C:\WINDOWS\Temp\CR_E1.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_74.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_1B.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_19.tmp folder moved successfully.
C:\WINDOWS\Temp\chrome_11965 folder moved successfully.
C:\WINDOWS\Temp\chrome_22723 folder moved successfully.
C:\WINDOWS\Temp\CR_8.tmp folder moved successfully.
C:\WINDOWS\Temp\CR_32.tmp folder moved successfully.
C:\WINDOWS\Temp\chrome_7482 folder moved successfully.
C:\WINDOWS\Temp\CR_B3.tmp folder moved successfully.
C:\WINDOWS\Temp\History\History.IE5 folder moved successfully.
C:\WINDOWS\Temp\History folder moved successfully.
C:\WINDOWS\Temp\Cookies folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\63L7ASFA folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\UVIBI7I9 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\8NOPURST folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\U953BE13 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5 folder moved successfully.
C:\WINDOWS\Temp\Temporary Internet Files folder moved successfully.
C:\WINDOWS\Temp\chrome_15038 folder moved successfully.
C:\WINDOWS\Temp\CR_D.tmp folder moved successfully.
C:\WINDOWS\Temp folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: All Users
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
User: User
->Temp folder emptied: 26480881 bytes
->Temporary Internet Files folder emptied: 11182630 bytes
->FireFox cache emptied: 54797908 bytes
->Google Chrome cache emptied: 205531228 bytes
->Flash cache emptied: 87768 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 966184724 bytes
Total Files Cleaned = 1 206,00 mb
[EMPTYFLASH]
User: Default User
User: All Users
User: NetworkService
User: LocalService
User: User
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.
OTL by OldTimer - Version 3.2.4.1 log created on 05142010_181009
Files\Folders moved on Reboot...
C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštění\wwwzuc32.exe moved successfully.
Registry entries deleted on Reboot...
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
Odinstalujte všechny emulátory virtuálních mechanik. Stáhněte SPTD http://www.duplexsecure.com/en/downloads
- Vyberte verzi podle svého operačního systému (64 & 32b). Uložte na plochu a spusťte.
- zvolte možnost Uninstall a restartujte PC.
Stáhněte a spusťte http://www.jpshortstuff.247fixes.com/Defogger.exe
- Klikněte na "Disable" a restartujte PC.
Stáhněte MBR na plochu http://www2.gmer.net/mbr/mbr.exe Start > Spustit (Win + R)- Vyskočí okénko, zkopírujte do něj:
Kód: Vybrat vše
"%userprofile%\plocha\mbr" -t- Klikněte na OK
- Vytvoří se log s názvem mbr.log, vložte ho sem.
Dejte log z Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878Re: Prosím o kontrolu logu .SVCHOST.EXE proces 99%
device: opened succesfully
user: MBR read succesfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hall.dll atapi.sys pc
iide.sys PCIIDEX.SYS
kernel: MBR read succesfully
user and kernel MBR OK
user: MBR read succesfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hall.dll atapi.sys pc
iide.sys PCIIDEX.SYS
kernel: MBR read succesfully
user and kernel MBR OK
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Přispějete na provoz fóra?