"pls pomoc" Win32:FakeAlert-FC [Trj]

[Damned]

Teď ten OTL.

[Reklama]

[david_sebanov]

OTL Extras logfile created on: 14.12.2009 23:58:40 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Users\Acer\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 49,71% Memory free
4,00 Gb Paging File | 2,95 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 181,64 Gb Total Space | 46,59 Gb Free Space | 25,65% Space Free | Partition Type: NTFS
Drive D: | 181,21 Gb Total Space | 27,00 Gb Free Space | 14,90% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SKAGGS-PC
Current User Name: Acer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- "%SystemRoot%\hh.exe" %1
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{8F24E480-E0B8-4A2C-939F-4D24915B63F2}" = lport=56855 | protocol=17 | dir=in | name=pando p2p udp listening port |
"{D764103E-F1FF-4B09-B444-C76BCB6374D7}" = lport=56855 | protocol=6 | dir=in | name=pando p2p tcp listening port |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{17C0996D-5F0C-47CF-9408-2DBD0E42304B}" = protocol=6 | dir=in | app=d:\hry\burnout demo\burnoutparadise.exe |
"{17C8B89C-DBE4-4048-A5CA-1900FE5F3689}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{191A7FB9-2B32-40F1-9618-A457B83CA94C}" = protocol=17 | dir=in | app=d:\programy\steam\steam.exe |
"{23DEFBD3-3547-4525-A96D-21E1F60CC473}" = dir=in | app=c:\program files\acer arcade live\acer homemedia\homemedia.exe |
"{280E365F-B0D3-4FA3-A2EE-D7DF5A202C78}" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield 2\bf2.exe |
"{31B38DA3-C13D-4FA0-BEA5-4C79D437DAB8}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{31BE3FB7-F33C-4870-97BD-ECEB090B2D0A}" = protocol=17 | dir=in | app=d:\hry\f.e.a.r. 2 - demo\fear2spdemo.exe |
"{336D5627-3CA9-4341-80AC-D82571EA2673}" = protocol=17 | dir=in | app=d:\hry\burnout demo\burnoutconfigtool.exe |
"{3B75CF17-6960-4CED-B3BB-E4444C5816F4}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{3C67806E-7C0B-4EB2-98BD-3753B8366715}" = protocol=6 | dir=in | app=d:\hry\far cry 2\bin\farcry2.exe |
"{40D110F9-9332-40AB-B59D-9B4FCED69122}" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"{40D52B32-F7DF-4646-A44E-40F0CACB7397}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{45240409-A4C0-4065-8BE4-3DC2B22CE23A}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty - world at war\codwawmp.exe |
"{46B63DEF-E1B3-460C-8AE8-6A69DA5948E7}" = protocol=6 | dir=in | app=d:\hry\burnout demo\burnoutlauncher.exe |
"{4B08AE95-7E38-4F7F-885F-DD08F4D4D73C}" = protocol=17 | dir=in | app=d:\hry\burnout demo\burnoutlauncher.exe |
"{56253CA8-0055-4BAE-908E-C744A49EEB69}" = protocol=17 | dir=in | app=d:\hry\burnout demo\burnoutparadise.exe |
"{64F1FB38-4E0C-4810-ABEF-1E0EC9D33662}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty - world at war\codwaw.exe |
"{6B19AED4-6CF3-4F6D-9E1B-16B10EC69735}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty - world at war\codwawmp.exe |
"{6E170ACD-8C34-4073-9B27-5CBF393B82CA}" = protocol=17 | dir=in | app=d:\hry\moto gp 09 - demo\motogp 08\launcher.exe |
"{70907A9D-CB8B-4194-86A9-D10930155830}" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3y.exe |
"{7C9E1323-9235-4272-AD76-B99BCA2B4D10}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{8C44C8D4-F905-4F70-873E-43E98263CA74}" = dir=in | app=c:\program files\acer arcade live\acer dvdivine\dvdivine.exe |
"{8D41FBB2-4718-4E4F-ADC3-D6B33B17BD81}" = dir=in | app=c:\program files\acer arcade live\acer videomagician\videomagician.exe |
"{8F112743-F1D0-4E70-92EF-D3D03DB0E60F}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty - world at war\codwaw.exe |
"{9098D3A9-09AA-45BB-AC7A-E1E148984073}" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3x.exe |
"{95233812-BB35-4A94-90D6-3EBC6AEDE75C}" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3x.exe |
"{9C7ED73C-7ABA-4E88-9F1A-2A299ED8B00F}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{9D35239C-7815-4F58-B5C7-F9DBB08AF50A}" = dir=in | app=c:\program files\acer arcade live\acer arcade live main page\acer arcade live.exe |
"{9DCC2EE4-E7BF-408D-AABD-EC937F7B9C1C}" = protocol=6 | dir=in | app=d:\hry\far cry 2\bin\fc2editor.exe |
"{9EFCCAE4-8B75-4AB4-BEF7-DA26E09EB3F7}" = dir=in | app=c:\program files\acer arcade live\acer homemedia connect\kernel\dms\clmsserver.exe |
"{A1983682-D402-449A-A8AE-34FEDC4865F1}" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3y.exe |
"{A77CE146-5312-402F-A08C-BA07335CF04D}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{AAAD80E3-71F7-4D5F-B1C6-D05605769135}" = protocol=6 | dir=in | app=d:\programy\steam\steam.exe |
"{AED70565-574B-4B0E-A4D0-2F06155A6359}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{AFF35DFE-CD10-4395-AE2A-3F8C56C405E4}" = protocol=17 | dir=in | app=d:\hry\far cry 2\bin\fc2launcher.exe |
"{B0E1F298-1A45-4631-97F9-7275D210B9FA}" = protocol=17 | dir=in | app=d:\hry\far cry 2\bin\farcry2.exe |
"{B29BC0F0-0E80-4165-BE73-6331FF9D1D0B}" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3.exe |
"{B71AC026-6C0B-41EC-B960-4D6AB54F3C17}" = protocol=6 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat |
"{BAF6DC01-809B-4C82-8480-199E61F3BBD7}" = protocol=17 | dir=in | app=d:\hry\far cry 2\bin\fc2editor.exe |
"{BB32FABE-2B7F-44F2-A0C3-FF986EE8AFD7}" = protocol=6 | dir=in | app=d:\hry\moto gp 09 - demo\motogp 08\launcher.exe |
"{C60B2936-62DE-469F-AE0C-4C630C635A94}" = dir=in | app=c:\program files\acer arcade live\acer homemedia connect\homemedia connect.exe |
"{CAA19378-565E-4C8E-87DF-13FCC45F2BF1}" = protocol=6 | dir=in | app=d:\hry\far cry 2\bin\fc2launcher.exe |
"{CE5194E6-CFDA-49CE-8701-B43F51C60809}" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield 2\bf2.exe |
"{D3B931C2-21C4-46E8-AF25-B577A2C22522}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D76F1580-CE15-470C-97F4-4341F2DC9D6F}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{D9AEA6F3-3E34-411E-9369-FFAD1A0967E3}" = protocol=17 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat |
"{E67F23B8-8511-4EE7-B12D-241620637F77}" = protocol=6 | dir=in | app=d:\hry\burnout demo\burnoutconfigtool.exe |
"{ED2E12CE-467B-4C0A-9C40-244D6BD90157}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{ED97268E-EBFD-40AC-879E-461D8E46CD43}" = dir=in | app=c:\program files\acer arcade live\acer dv magician\component\dvax2process.exe |
"{EDB08AB0-1E0D-47FB-A841-BCF5A2FAC387}" = protocol=6 | dir=in | app=d:\hry\f.e.a.r. 2 - demo\fear2spdemo.exe |
"{FB05C293-121E-4A60-A027-CE4A6A502243}" = dir=in | app=c:\program files\acer arcade live\slideshow dvd\component\clsldvd.exe |
"{FB53D0C9-D8E0-4943-AC5B-FFACA8C9FEDC}" = dir=in | app=c:\program files\acer arcade live\acer dv magician\component\arawp.exe |
"TCP Query User{0D22B56A-9910-44B3-992B-0F28512B79A9}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{16908679-C5EF-4798-AE09-77F91CEF40F2}D:\hry\return to castle wolfenstein\wolfmp.exe" = protocol=6 | dir=in | app=d:\hry\return to castle wolfenstein\wolfmp.exe |
"TCP Query User{18BB93CB-3201-46D3-A5B9-2E697F902BF3}D:\hry\half-life 2 ultimate edition 6\engine3\hl2.exe" = protocol=6 | dir=in | app=d:\hry\half-life 2 ultimate edition 6\engine3\hl2.exe |
"TCP Query User{1DCDDD73-3CEE-4C83-B7EC-23B5D01D347A}D:\hry\far cry\bin32\farcry.exe" = protocol=6 | dir=in | app=d:\hry\far cry\bin32\farcry.exe |
"TCP Query User{1EE60513-7B09-4152-8C16-82C815ECD353}D:\programy\qip\qip infium pafopack\inf.exe" = protocol=6 | dir=in | app=d:\programy\qip\qip infium pafopack\inf.exe |
"TCP Query User{1FBD7A8A-41D3-454A-9662-DE9399F4B6DF}C:\program files\activision\call of duty - world at war beta\codwawbeta.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty - world at war beta\codwawbeta.exe |
"TCP Query User{24E9A8E4-46AC-4CB8-B1CB-603F7986E8A3}D:\programy\azureus\azureus.exe" = protocol=6 | dir=in | app=d:\programy\azureus\azureus.exe |
"TCP Query User{25CB0622-70A8-4B3A-AD99-D78BA50A8C7E}D:\hry\burnout demo\t2b\burnoutparadise.exe" = protocol=6 | dir=in | app=d:\hry\burnout demo\t2b\burnoutparadise.exe |
"TCP Query User{2A7E047E-D899-4006-8AC3-5D0FFFEB7066}C:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat" = protocol=6 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat |
"TCP Query User{2C324D2E-C8B5-46AD-A165-D6E9A192A12D}D:\hry\lfs s2 alpha z\lfs.exe" = protocol=6 | dir=in | app=d:\hry\lfs s2 alpha z\lfs.exe |
"TCP Query User{2E4F7EA0-DDAA-47BC-BFF5-B90D7DD654A3}D:\hry\trackmania united\tmunited.exe" = protocol=6 | dir=in | app=d:\hry\trackmania united\tmunited.exe |
"TCP Query User{2F7A588D-5A3A-424F-A5B8-DC1BC89D614D}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{3DB71A28-084C-4D24-9C18-7A983ED27959}C:\program files\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files\counter-strike source\hl2.exe |
"TCP Query User{4384E9DF-2A7E-4A49-B660-062EC474D728}D:\hry\trackmania\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\hry\trackmania\tmnationsforever\tmforever.exe |
"TCP Query User{478E5D4B-D149-4CFE-B2DB-BE3D2255DC02}C:\program files\bitspirit\bitspirit.exe" = protocol=6 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"TCP Query User{490B364E-D45F-4302-AA55-FC7F09711003}D:\hry\modern warfare 2\iw4mp.exe" = protocol=6 | dir=in | app=d:\hry\modern warfare 2\iw4mp.exe |
"TCP Query User{55CDDC2C-DA06-4B32-8D5B-2C1595E0D912}D:\hry\modern warfare 2\iw4mp.exe" = protocol=6 | dir=in | app=d:\hry\modern warfare 2\iw4mp.exe |
"TCP Query User{63A5BBCD-F93D-4D52-B223-0B2F1AF2FDE7}C:\program files\free download manager\fdm.exe" = protocol=6 | dir=in | app=c:\program files\free download manager\fdm.exe |
"TCP Query User{6C9F06AF-BB5B-47FE-B949-6DA533DA3FDE}D:\hry\counter strike 1.6\hl.exe" = protocol=6 | dir=in | app=d:\hry\counter strike 1.6\hl.exe |
"TCP Query User{71A58EF9-BF2B-4409-8936-5DB7D265D451}C:\users\acer\appdata\local\temp\rar$ex01.533\trackmania united 2.1.0 crack\tmunited.exe" = protocol=6 | dir=in | app=c:\users\acer\appdata\local\temp\rar$ex01.533\trackmania united 2.1.0 crack\tmunited.exe |
"TCP Query User{72627643-12C4-49FF-A1FB-AE73D1F2F1CA}C:\users\acer\desktop\qip\qip infium pafopack\inf.exe" = protocol=6 | dir=in | app=c:\users\acer\desktop\qip\qip infium pafopack\inf.exe |
"TCP Query User{7A0ED07A-305B-4D2D-BE6C-F23D5DD9A49D}D:\icq6\icq.exe" = protocol=6 | dir=in | app=d:\icq6\icq.exe |
"TCP Query User{7D99A632-63A6-499B-BF84-82ABDAD233D2}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe |
"TCP Query User{89318EC4-4C08-4D95-9C38-09258BFBE651}C:\program files\electronic arts\the battle for middle-earth (tm) ii\patchget.dat" = protocol=6 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\patchget.dat |
"TCP Query User{8CB6761D-A288-4413-BA13-DE940EDC393D}C:\program files\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"TCP Query User{920346F0-D83F-4BA6-ADD3-9712A8BB76AD}D:\icq6\icq.exe" = protocol=6 | dir=in | app=d:\icq6\icq.exe |
"TCP Query User{9457D465-57C1-4494-A63C-7E3438858FB2}D:\hry\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=d:\hry\counter-strike source\hl2.exe |
"TCP Query User{97DF20A8-C8D3-415F-A487-2A4C7FE83174}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{A14B806B-7F9C-4009-AB6F-3C477811A9BE}D:\hry\quake iii arena\quake3.exe" = protocol=6 | dir=in | app=d:\hry\quake iii arena\quake3.exe |
"TCP Query User{A1F66AAB-B159-4DD3-985A-2040A0B40CAD}C:\users\acer\desktop\wolfenstein\wolf2mp.exe" = protocol=6 | dir=in | app=c:\users\acer\desktop\wolfenstein\wolf2mp.exe |
"TCP Query User{A655E440-66D6-453B-BB4E-9F9E6366322E}D:\hry\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=d:\hry\counter-strike source\hl2.exe |
"TCP Query User{A6D28E3D-9165-4302-9F7A-CAC1FE515E4D}D:\hry\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=d:\hry\call of duty 2\cod2mp_s.exe |
"TCP Query User{A9C6DF27-5067-4D6B-99F0-81B0A3AFDB0E}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"TCP Query User{A9D1B47D-0A90-444D-812B-DA4D4FE0DCEE}C:\program files\bitspirit\bitspirit.exe" = protocol=6 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"TCP Query User{ADDCD383-F124-4D0C-908D-1B74D9FE65F5}D:\icq6.5\icq.exe" = protocol=6 | dir=in | app=d:\icq6.5\icq.exe |
"TCP Query User{B05A8254-520C-47AE-991F-81FF4D6C4BFD}C:\users\acer\appdata\local\temp\rar$ex05.037\trackmania united 2.1.0 crack\tmunited.exe" = protocol=6 | dir=in | app=c:\users\acer\appdata\local\temp\rar$ex05.037\trackmania united 2.1.0 crack\tmunited.exe |
"TCP Query User{B5DF3EC2-7936-4433-8974-B1E05F36AA4C}D:\hry\flightgear\bin\win32\fgfs.exe" = protocol=6 | dir=in | app=d:\hry\flightgear\bin\win32\fgfs.exe |
"TCP Query User{C1C0696D-33F2-48F7-A7C4-A1203D96AEA5}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{C542E549-8325-490D-AF8D-C36808D3F6E2}D:\hry\need for speed - carbon\nfsc.exe" = protocol=6 | dir=in | app=d:\hry\need for speed - carbon\nfsc.exe |
"TCP Query User{CB5F1A58-5F19-46CD-8BD1-0C21D3683DC0}D:\free download manager\fdm.exe" = protocol=6 | dir=in | app=d:\free download manager\fdm.exe |
"TCP Query User{CFAEC6AA-7D5D-4D01-99C1-73E45E34145D}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe |
"TCP Query User{D2BFC56A-2E24-4C95-A8CA-2D44098428AD}D:\hry\madden nfl 08\updater.exe" = protocol=6 | dir=in | app=d:\hry\madden nfl 08\updater.exe |
"TCP Query User{D8E1F50D-BCC8-4282-BE82-71C21E4E9DB0}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.7.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.7.exe |
"TCP Query User{E15B41FC-70EB-420B-AC68-09CDA78A3768}C:\program files\activision\call of duty - world at war\codwaw_lanfixed.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty - world at war\codwaw_lanfixed.exe |
"TCP Query User{E4BE96E0-3F4C-4B94-B0D2-794A2628D2E1}C:\program files\web publish\wpwiz.exe" = protocol=6 | dir=in | app=c:\program files\web publish\wpwiz.exe |
"TCP Query User{ECFC4BAE-C7D2-4297-A76A-086D66EFFBD5}C:\program files\common files\nero\nero web\setupx.exe" = protocol=6 | dir=in | app=c:\program files\common files\nero\nero web\setupx.exe |
"TCP Query User{FA9DD216-56A0-4617-976E-7BB7CD90B4F9}C:\program files\ea sports\nhl 09\nhl2009.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl 09\nhl2009.exe |
"TCP Query User{FAFB50D3-043C-428C-A0CE-8A9192521D5A}D:\hry\starcraft\starcraft\starcraft.exe" = protocol=6 | dir=in | app=d:\hry\starcraft\starcraft\starcraft.exe |
"TCP Query User{FCA508FC-4B36-4774-8FF4-D4C78B46A801}D:\hry\alien arena 2008\crx.exe" = protocol=6 | dir=in | app=d:\hry\alien arena 2008\crx.exe |
"UDP Query User{02770757-28CB-4A77-BDEC-5378EAE1CA7F}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.7.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.7.exe |
"UDP Query User{04ECA533-6260-4D7C-B996-6275AB84D426}C:\program files\common files\nero\nero web\setupx.exe" = protocol=17 | dir=in | app=c:\program files\common files\nero\nero web\setupx.exe |
"UDP Query User{0CB7736E-65DE-4024-871B-7DEB9D4F5FB7}D:\hry\trackmania\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\hry\trackmania\tmnationsforever\tmforever.exe |
"UDP Query User{1080A575-0F12-4C26-8AE5-71F76A467234}C:\users\acer\desktop\wolfenstein\wolf2mp.exe" = protocol=17 | dir=in | app=c:\users\acer\desktop\wolfenstein\wolf2mp.exe |
"UDP Query User{114981D0-EED4-41EC-94C7-7B09A50676DF}D:\hry\flightgear\bin\win32\fgfs.exe" = protocol=17 | dir=in | app=d:\hry\flightgear\bin\win32\fgfs.exe |
"UDP Query User{1DE5DAF6-269D-4249-8289-9389D92F836E}D:\icq6\icq.exe" = protocol=17 | dir=in | app=d:\icq6\icq.exe |
"UDP Query User{1FB10738-6D72-4E06-A12F-F1B39F6B5DAB}C:\program files\bitspirit\bitspirit.exe" = protocol=17 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"UDP Query User{2157137A-0D9A-47BF-9AA9-1CC90E2A29BA}C:\program files\electronic arts\the battle for middle-earth (tm) ii\patchget.dat" = protocol=17 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\patchget.dat |
"UDP Query User{2363C156-1671-4DB9-91F2-07A359E87506}C:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat" = protocol=17 | dir=in | app=c:\program files\electronic arts\the battle for middle-earth (tm) ii\game.dat |
"UDP Query User{26BD766C-3CB9-4FC6-8462-0339EC3A1469}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe |
"UDP Query User{3E1F4C0C-C3D1-4C20-A327-1F1095D9501D}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"UDP Query User{42A1F797-D2C5-46F5-B452-61076CA30EBC}D:\icq6\icq.exe" = protocol=17 | dir=in | app=d:\icq6\icq.exe |
"UDP Query User{45D5ADD8-5783-4520-9E2F-1D8E06800B65}C:\program files\bitspirit\bitspirit.exe" = protocol=17 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"UDP Query User{4AB83BD6-0787-4EFA-A063-0F1CC38DE306}D:\icq6.5\icq.exe" = protocol=17 | dir=in | app=d:\icq6.5\icq.exe |
"UDP Query User{4D749D9C-4436-469D-9863-68F3837E4D77}C:\program files\ea sports\nhl 09\nhl2009.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl 09\nhl2009.exe |
"UDP Query User{59A51B4E-9F48-4ACD-9AE5-EDCB92A66F21}D:\hry\modern warfare 2\iw4mp.exe" = protocol=17 | dir=in | app=d:\hry\modern warfare 2\iw4mp.exe |
"UDP Query User{685C2FFB-3700-4DCB-8C55-295BE2031E83}D:\hry\lfs s2 alpha z\lfs.exe" = protocol=17 | dir=in | app=d:\hry\lfs s2 alpha z\lfs.exe |
"UDP Query User{6D02ABFA-047C-45E3-BEEE-7C167C2D3D2F}C:\program files\activision\call of duty - world at war beta\codwawbeta.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty - world at war beta\codwawbeta.exe |
"UDP Query User{6EAE06BB-51F6-416B-87F4-6BB106311E8A}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{6EB03628-4CC6-41FE-B7C9-7AD1B9E28BC1}D:\hry\half-life 2 ultimate edition 6\engine3\hl2.exe" = protocol=17 | dir=in | app=d:\hry\half-life 2 ultimate edition 6\engine3\hl2.exe |
"UDP Query User{75DD98DF-86A4-476D-BA28-64B4CC643103}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{796366A4-1EB3-45DF-A41B-94E7EEFD6ADD}D:\hry\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=d:\hry\call of duty 2\cod2mp_s.exe |
"UDP Query User{81F57CC8-9CCE-4E88-95AA-1B6B97C3A5B1}D:\programy\azureus\azureus.exe" = protocol=17 | dir=in | app=d:\programy\azureus\azureus.exe |
"UDP Query User{87427765-9E98-4BF8-B388-FEA094D9DA79}D:\hry\return to castle wolfenstein\wolfmp.exe" = protocol=17 | dir=in | app=d:\hry\return to castle wolfenstein\wolfmp.exe |
"UDP Query User{93AC4B08-9E74-41BB-87BE-4F6617FF8B2E}C:\users\acer\desktop\qip\qip infium pafopack\inf.exe" = protocol=17 | dir=in | app=c:\users\acer\desktop\qip\qip infium pafopack\inf.exe |
"UDP Query User{961AD636-E7D2-4880-B987-01367C60BA19}D:\hry\alien arena 2008\crx.exe" = protocol=17 | dir=in | app=d:\hry\alien arena 2008\crx.exe |
"UDP Query User{9B0B2B91-0BA5-4480-9CD1-72FDA29A0966}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{A7CDF392-55E8-43A2-B21F-02FE53430410}D:\hry\need for speed - carbon\nfsc.exe" = protocol=17 | dir=in | app=d:\hry\need for speed - carbon\nfsc.exe |
"UDP Query User{AAC449CE-E44E-4F9F-9553-D0BDADDED810}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{ABCA3B89-910D-4E55-A585-3C0D2B3ED941}D:\hry\quake iii arena\quake3.exe" = protocol=17 | dir=in | app=d:\hry\quake iii arena\quake3.exe |
"UDP Query User{B1F97986-2C5D-45C7-B5F7-05ABCC5DEBA8}D:\hry\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=d:\hry\counter-strike source\hl2.exe |
"UDP Query User{C0AEB6E2-35AB-458B-96AD-2A9B777A2A7D}D:\hry\madden nfl 08\updater.exe" = protocol=17 | dir=in | app=d:\hry\madden nfl 08\updater.exe |
"UDP Query User{C33962DA-F955-44DF-9E5E-1F89EDFB4176}D:\hry\trackmania united\tmunited.exe" = protocol=17 | dir=in | app=d:\hry\trackmania united\tmunited.exe |
"UDP Query User{D3DDE1FE-EE5D-4E82-A9DD-020FAC9DCD31}D:\hry\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=d:\hry\counter-strike source\hl2.exe |
"UDP Query User{D93C3F86-30E5-44F4-8EF2-974CAB4E4316}D:\hry\far cry\bin32\farcry.exe" = protocol=17 | dir=in | app=d:\hry\far cry\bin32\farcry.exe |
"UDP Query User{D983A24E-520E-476B-B82D-E2CE0B5B72CD}C:\program files\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"UDP Query User{D9D90E8C-AAC8-477F-AB10-4F7BEFEA3F1B}C:\program files\web publish\wpwiz.exe" = protocol=17 | dir=in | app=c:\program files\web publish\wpwiz.exe |
"UDP Query User{D9EF4D20-0E42-47BF-A102-79814301A724}D:\hry\modern warfare 2\iw4mp.exe" = protocol=17 | dir=in | app=d:\hry\modern warfare 2\iw4mp.exe |
"UDP Query User{DECE820F-651B-4783-B44F-3FD21F00BBD0}D:\hry\counter strike 1.6\hl.exe" = protocol=17 | dir=in | app=d:\hry\counter strike 1.6\hl.exe |
"UDP Query User{E3E748C8-734D-40D7-A31A-40E15CE4684A}C:\program files\free download manager\fdm.exe" = protocol=17 | dir=in | app=c:\program files\free download manager\fdm.exe |
"UDP Query User{E93E8A13-BBD2-4A5A-83C9-50134C1A05BE}D:\free download manager\fdm.exe" = protocol=17 | dir=in | app=d:\free download manager\fdm.exe |
"UDP Query User{E97E60EB-8C9F-4840-82EB-2BE1A73CBCEB}D:\hry\burnout demo\t2b\burnoutparadise.exe" = protocol=17 | dir=in | app=d:\hry\burnout demo\t2b\burnoutparadise.exe |
"UDP Query User{EA3753AA-9135-4092-8114-C9477ED6619C}C:\program files\activision\call of duty - world at war\codwaw_lanfixed.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty - world at war\codwaw_lanfixed.exe |
"UDP Query User{EEF713F1-AF40-4AE7-978C-CF2BCB3A8614}C:\users\acer\appdata\local\temp\rar$ex01.533\trackmania united 2.1.0 crack\tmunited.exe" = protocol=17 | dir=in | app=c:\users\acer\appdata\local\temp\rar$ex01.533\trackmania united 2.1.0 crack\tmunited.exe |
"UDP Query User{F7299543-57F2-4D9B-8A03-8D4FCD9ECAE8}C:\program files\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files\counter-strike source\hl2.exe |
"UDP Query User{F77053BA-ED6B-4271-8129-6053D25B97DB}C:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mphamachi 1.4.exe |
"UDP Query User{FA6FB2F2-C378-4698-8319-4D6D25E5EBEF}D:\hry\starcraft\starcraft\starcraft.exe" = protocol=17 | dir=in | app=d:\hry\starcraft\starcraft\starcraft.exe |
"UDP Query User{FD01D01F-91EE-43B5-8341-45C447330D36}D:\programy\qip\qip infium pafopack\inf.exe" = protocol=17 | dir=in | app=d:\programy\qip\qip infium pafopack\inf.exe |
"UDP Query User{FE115900-C238-4FF0-BD32-DB11ABBC7213}C:\users\acer\appdata\local\temp\rar$ex05.037\trackmania united 2.1.0 crack\tmunited.exe" = protocol=17 | dir=in | app=c:\users\acer\appdata\local\temp\rar$ex05.037\trackmania united 2.1.0 crack\tmunited.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{076A6FD8-EE45-4A83-B3C9-C7C34E7CAFDD}" = Lineage II
"{07A540AB-D785-11D5-8E89-0090275862A0}" = Corel Graphics Suite 11
"{07BE4679-4318-4413-9701-B3D92354F11D}" = Heroes of Might and Magic V - Tribes of the East
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{132888AE-EF67-41C5-BCA2-7D5D2488AB63}" = Acer HomeMedia Connect
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"{1E6B3D3E-82E6-4F6A-BBA9-8314FCCA7123}_is1" = iICO 1.3
"{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 17
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = The Battle for Middle-earth (tm) II
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3248F0A8-6813-11D6-A77B-00B0D0150150}" = J2SE Runtime Environment 5.0 Update 15
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1" = Video Download Capture V2.3.5
"{41581EF5-45A7-11DA-9D78-000129760D75}" = Acer SlideShow DVD
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{44734179-8A79-4DEE-BB08-73037F065543}" = Apple Mobile Device Support
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{6E298B0A-558C-4138-0096-740677B382CD}" = LOTR The Return of the King tm
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7104189A-C592-4A56-AC9E-7C0CA135DA3C}" = AGEIA PhysX v6.10.25
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.5.2.137
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7E5C34FD-0D50-4F35-8BEF-9C8861D315BC}" = FEAR SP Demo
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{9074AFC0-CFDA-11DE-B484-005056806466}" = Google Earth
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91C0D874-6444-4416-BA8F-C777EA157203}_is1" = Fifa 09 CZ+Dabing
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{93F54611-2701-454e-94AB-623F458D9E6B}" = DeviceDiscovery
"{94389919-B0AA-4882-9BE8-9F0B004ECA35}" = Acer Tour
"{993960EE-CA4D-443F-8F88-E24260DD5FD2}" = LG PC Suite
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9B63540D-D942-4C38-B42E-A48AE0145970}" = Virtua Tennis(TM) 2009
"{A036E231-5A03-4d63-94F6-7864CC77EC48}" = PS_AIO_ProductContext
"{A3BC1DBD-64D6-4EBC-0091-24C811662D40}" = Madden NFL 08
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4BF92B-2AAF-11DA-9D78-000129760D75}" = Acer HomeMedia
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AEEAE013-92F1-4515-B278-139F1A692A36}" = Acer eDataSecurity Management
"{AF145F8997B44EE9B106D018EF1DB58B}" = DivX Converter Mobile
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B040FEFE-B45F-4e30-B3C6-035F53F544A9}" = c4200_Help
"{B145EC69-66F5-11D8-9D75-000129760D75}" = Acer DVDivine
"{B22C19AE-6A67-4f28-B541-5AE72FB17A25}" = HP Photosmart All-In-One Software 9.0
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{B9F3A6E6-9C77-4535-9ED9-B16C1EBDFEC2}" = C4200
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BFD96B89-B769-4CD6-B11E-E79FFD46F067}" = QuickTime
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{C9DC3EE4-7A92-F473-510D-48A5EAD52845}" = ATI Catalyst Install Manager
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1
"{D050D7362D214723AD585B541FFB6C11}" = DivX Content Uploader
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D26D1A53-D8A2-4004-BC98-0642B4EEAAB2}" = Colin McRae Rally 3
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D462BF9E-0C35-4705-BF9B-3DF9F3816643}" = Acer ePerformance Management
"{D6D5CB84-0E6E-4E69-B300-C690B6911029}" = Nero 8 Trial
"{D719E8F1-6931-40b4-AC0B-5FE2C097F995}" = C4200_doccd
"{DBD1FF41-F438-4D0A-A3F1-999930B5BC52}" = Command & Conquer™ Red Alert™ 3 Demo
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E39A3770-3DDE-404c-B91F-3522947874A3}" = PS_AIO_Software_min
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EEFB15EB-FE8B-47DF-A496-1C4D1420294A}" = Doom 3
"{EF9DC140-6762-11DC-8CA9-A75E55D89593}" = Rail Simulator Demo
"{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}" = Acer Arcade Live Main Page
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F6EFFB76-4A07-11DA-9D78-000129760D75}" = Acer DV Magician
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{F79A208D-D929-11D9-9D77-000129760D75}" = Acer VideoMagician
"{FA4FA322-5C90-4d2b-A019-9E588273DED5}" = PS_AIO_Software
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Any Audio Converter_is1" = Any Audio Converter 1.0.1
"Arkanoid 4000" = Arkanoid 4000
"ATI Uninstaller" = ATI Uninstaller
"avast!" = avast! Antivirus
"Battle.net" = Battle.net
"BitSpirit_is1" = BitSpirit v3.3.2.100 Stable
"BSPlayerf" = BS.Player FREE
"Call of Duty Modern Warfare 2_is1" = Call of Duty Modern Warfare 2
"Carnivores 2" = Carnivores 2
"CCleaner" = CCleaner (remove only)
"Counter-Strike: Source" = Counter-Strike: Source
"DVD Shrink_is1" = DVD Shrink 3.2
"ESET Online Scanner" = ESET Online Scanner v3
"Euro Truck Simulator" = Euro Truck Simulator
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.50
"Extra Photo to Video Converter Free_is1" = Extra Photo to Video Converter Free 4.2
"Fraps" = Fraps (remove only)
"Free Download Manager_is1" = Free Download Manager 3.0
"Free YouTube to iPod Converter_is1" = Free YouTube to iPod Converter version 3.2
"Free YouTube to Mp3 Converter_is1" = Free YouTube to Mp3 Converter version 3.1
"GreatMahjong_is1" = Great Mahjong
"Hamachi" = Hamachi 1.0.3.0
"HL2UE_6500_is1" = Half-Life 2 Ultimate Edition (build 6500)
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"HPOCR" = HP OCR Software 9.0
"Cheat Engine 5.5_is1" = Cheat Engine 5.5
"InstallShield_{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}" = CorelDRAW Graphics Suite 11
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"InstallShield_{D26D1A53-D8A2-4004-BC98-0642B4EEAAB2}" = Colin McRae Rally 3
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"InstallShield_{EEFB15EB-FE8B-47DF-A496-1C4D1420294A}" = Doom 3
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.8.0 Full
"lvdrivers_11.80" = Logitech QuickCam Driver Package
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"PokerStars" = PokerStars
"PPSee" = PPSee 1.29
"PunkBusterSvc" = PunkBuster Services
"QIP 2005_is1" = QIP 2005 8090
"Quake III Arena" = Quake III Arena
"Return to Castle Wolfenstein" = Return to Castle Wolfenstein
"Software Informer_is1" = Software Informer 1.0 BETA
"Spy Emergency_is1" = Spy Emergency
"Spyware Terminator_is1" = Spyware Terminator
"SysJewel_is1" = SysJewel 1.1, Build 100
"SystemRequirementsLab" = System Requirements Lab
"szn-software-listicka" = Seznam Lištička 2 (Všichni uživatelé tohoto počítače.)
"Tarzan Action Game" = Tarzan Action Game
"UltraStar Deluxe" = UltraStar Deluxe
"Uninstall_is1" = Uninstall 1.0.0.1
"Visual Basic 6.0 Professional Edition" = Microsoft Visual Basic 6.0 Professional Edition
"WebPost" = Microsoft Web Publishing Wizard 1.53
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
"WM Converter 2.0" = WM Converter 2.0
"Wolfenstein 3D" = Wolfenstein 3D
"XTTB00001.XTTB00001Toolbar" = ICQ Toolbar
"CENZURA HD_is1" = CENZURA HD v. 1.6

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 6.5.2009 14:13:53 | Computer Name = Acer-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Program Files\Internet Explorer\iedw.exe failed, 00000005.

Error - 28.6.2009 17:39:59 | Computer Name = Acer-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Windows\System32\conime.exe failed, 00000005.

Error - 17.7.2009 19:49:12 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Users\Acer\AppData\Roaming\skypePM\2009-07-18-0.ezlog failed, 00000005.

Error - 27.7.2009 13:48:47 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s9.uloz.to/Ps;Hs;fid=2099367; ... 0&c=588557
failed, 00000084.

Error - 27.7.2009 13:49:30 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s6.uloz.to/Ps;Hs;fid=2098540; ... &c=8473031
failed, 0000001E.

Error - 11.9.2009 11:40:51 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Users\Acer\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~\Galerie
oblastí Web Slice~.feed-ms failed, 00000005.

Error - 29.9.2009 14:58:21 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s7.uloz.to/Ps;Hs;fid=1245217; ... c=89454093
failed, 00000084.

Error - 29.9.2009 16:16:05 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s7.uloz.to/Ps;Hs;fid=671288;c ... 2321316&De
failed, 00000084.

Error - 14.10.2009 12:45:13 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of D:\HRY\Far Cry\Shaders\HWScripts\Declarations\CGVShaders\Cache\CGVProgWater_Beach$D3D9_VS11$Fog$CP#PosWaterDeform.cgvp
failed, 00000005.

Error - 14.12.2009 13:45:13 | Computer Name = SkaggS-PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Users\Acer\AppData\Roaming\Skype\shelldon_skaggs\chatsync\13\13fcc7ae0fb36531.dat
failed, 00000005.

[ Application Events ]
Error - 4.9.2009 8:27:29 | Computer Name = SkaggS-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace set270.tmp, verze 11.0.0.28844, časové razítko
0x4250bcf6, chybující modul set270.tmp, verze 11.0.0.28844, časové razítko 0x4250bcf6,
kód výjimky 0xc0000005, posun chyby 0x0000742e, ID procesu 0xd8c, čas spuštění aplikace
0x01ca2d5b11703ee0.

Error - 4.9.2009 8:32:47 | Computer Name = SkaggS-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace setDDA1.tmp, verze 11.0.0.28844, časové razítko
0x4250bcf6, chybující modul setDDA1.tmp, verze 11.0.0.28844, časové razítko 0x4250bcf6,
kód výjimky 0xc0000005, posun chyby 0x0000742e, ID procesu 0x1074, čas spuštění
aplikace 0x01ca2d5bcf1fffc0.

Error - 4.9.2009 8:44:56 | Computer Name = SkaggS-PC | Source = ESENT | ID = 467
Description = Windows (2464) Windows: Databáze C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb:
Index System_ItemTypeText405 tabulky SystemIndex_0A je poškozen (0).

Error - 4.9.2009 8:44:56 | Computer Name = SkaggS-PC | Source = Windows Search Service | ID = 7040
Description =

Error - 6.9.2009 10:50:43 | Computer Name = SkaggS-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 6.9.2009 15:42:36 | Computer Name = SkaggS-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.6002.18065, časové razítko
0x4a5dce03, chybující modul wmp.dll, verze 11.0.6002.18065, časové razítko 0x4a5de837,
kód výjimky 0xc0000005, posun chyby 0x0005653c, ID procesu 0x1f8, čas spuštění aplikace
0x01ca2f2a2e1c74bf.

Error - 7.9.2009 5:05:45 | Computer Name = SkaggS-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7.9.2009 17:46:43 | Computer Name = SkaggS-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8.9.2009 6:02:36 | Computer Name = SkaggS-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8.9.2009 16:42:26 | Computer Name = SkaggS-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.6002.18065, časové razítko
0x4a5dce03, chybující modul wmp.dll, verze 11.0.6002.18065, časové razítko 0x4a5de837,
kód výjimky 0xc0000005, posun chyby 0x00152547, ID procesu 0xb44, čas spuštění aplikace
0x01ca30c4dd58aae3.

[ Media Center Events ]
Error - 18.4.2008 2:47:14 | Computer Name = Acer-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: Stahování balíčku MCESpotlight
se nezdařilo.

[ OSession Events ]
Error - 17.9.2009 14:10:15 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 122 seconds with 120 seconds of active time. This session ended with a crash.

Error - 8.10.2009 12:11:16 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 75 seconds with 60 seconds of active time. This session ended with a crash.

Error - 8.10.2009 12:18:32 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 352 seconds with 300 seconds of active time. This session ended with a crash.

Error - 14.10.2009 13:32:51 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 63 seconds with 60 seconds of active time. This session ended with a crash.

Error - 15.10.2009 13:49:37 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 41 seconds with 0 seconds of active time. This session ended with a crash.

Error - 25.10.2009 14:59:50 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 77 seconds with 60 seconds of active time. This session ended with a crash.

Error - 25.10.2009 15:03:28 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 19 seconds with 0 seconds of active time. This session ended with a crash.

Error - 25.10.2009 15:04:54 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 63 seconds with 60 seconds of active time. This session ended with a crash.

Error - 1.11.2009 13:50:08 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 63 seconds with 60 seconds of active time. This session ended with a crash.

Error - 1.11.2009 13:51:23 | Computer Name = SkaggS-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session
lasted 51 seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 14.12.2009 4:28:49 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.12.2009 4:28:49 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 14.12.2009 12:31:54 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 14.12.2009 12:31:54 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 14.12.2009 12:31:54 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.12.2009 12:31:54 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 14.12.2009 13:48:30 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 14.12.2009 13:48:30 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 14.12.2009 13:48:30 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.12.2009 13:48:30 | Computer Name = SkaggS-PC | Source = Service Control Manager | ID = 7026
Description =


< End of report >

[david_sebanov]

OTL logfile created on: 14.12.2009 23:58:39 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Users\Acer\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 49,71% Memory free
4,00 Gb Paging File | 2,95 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 181,64 Gb Total Space | 46,59 Gb Free Space | 25,65% Space Free | Partition Type: NTFS
Drive D: | 181,21 Gb Total Space | 27,00 Gb Free Space | 14,90% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SKAGGS-PC
Current User Name: Acer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Acer\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Windows\System32\PnkBstrB.exe ()
PRC - D:\PROGRAMY\Spy Emergency\SpyEmergencySrv.exe (NETGATE Technologies s.r.o.)
PRC - C:\Windows\System32\PnkBstrA.exe ()
PRC - C:\Program Files\Internet Explorer\ieuser.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
PRC - C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple, Inc.)
PRC - c:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Windows\System32\WUDFHost.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
PRC - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe ()
PRC - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe (CyberLink)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.)
PRC - C:\Acer\Empowering Technology\eRecovery\eRAgent.exe (Acer Inc.)
PRC - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe (HiTRSUT)
PRC - C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)


========== Modules (SafeList) ==========

MOD - C:\Users\Acer\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (PnkBstrB) -- C:\Windows\System32\PnkBstrB.exe ()
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (SpyEmrgSrv) -- D:\PROGRAMY\Spy Emergency\SpyEmergencySrv.exe (NETGATE Technologies s.r.o.)
SRV - (PnkBstrA) -- C:\Windows\System32\PnkBstrA.exe ()
SRV - (nvsvc) -- C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
SRV - (gupdate1c9a8c434952b00) Google Update Service (gupdate1c9a8c434952b00) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (sp_rssrv) -- C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (NMIndexingService) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
SRV - (Nero BackItUp Scheduler 3) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple, Inc.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (NMSAccessU) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
SRV - (RichVideo) Cyberlink RichVideo Service(CRVS) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
SRV - (Acer HomeMedia Connect Service) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe (CyberLink)
SRV - (Ati External Event Utility) -- C:\Windows\System32\Ati2evxx.exe (ATI Technologies Inc.)
SRV - (hpqddsvc) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (Hewlett-Packard Co.)
SRV - (hpqcxs08) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (Hewlett-Packard Co.)
SRV - (eDataSecurity Service) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe (HiTRSUT)
SRV - (eRecoveryService) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe (Acer Inc.)
SRV - (LightScribeService) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (AcerMemUsageCheckService) -- C:\Acer\Empowering Technology\ePerformance\MemCheck.exe ()
SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)
SRV - (Pml Driver HPZ12) -- C:\Windows\System32\HPZipm12.dll (Hewlett-Packard)
SRV - (Net Driver HPZ12) -- C:\Windows\System32\HPZinw12.dll (Hewlett-Packard)
SRV - (ehstart) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (odserv) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (SpyEmrgAccess) -- C:\Windows\System32\drivers\spyemrg_access.sys (NETGATE Technologies s.r.o.)
DRV - (SpyEmrgGuard) -- C:\Windows\System32\drivers\spyemrg_guard.sys (NETGATE Technologies s.r.o.)
DRV - (SpyEmrg) -- C:\Windows\System32\drivers\spyemrg.sys (NETGATE Technologies s.r.o.)
DRV - (pcouffin) -- C:\Windows\System32\drivers\pcouffin.sys (VSO Software)
DRV - (usbaudio) Ovladač zvuků USB (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\Windows\System32\drivers\sfdrv01.sys (Protection Technology (StarForce))
DRV - (sp_rsdrv2) -- C:\Windows\System32\drivers\sp_rsdrv2.sys ()
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (nxsIO32) -- C:\Windows\System32\drivers\nxsIO32.sys ()
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\Windows\System32\drivers\sfvfs02.sys (Protection Technology (StarForce))
DRV - (PSDNServ) -- C:\Windows\system32\drivers\PSDNServ.sys (HiTRUST)
DRV - (psdvdisk) -- C:\Windows\system32\drivers\psdvdisk.sys (HiTRUST)
DRV - (PSDFilter) -- C:\Windows\system32\DRIVERS\psdfilter.sys (HiTRUST)
DRV - (int15) -- C:\Acer\Empowering Technology\eRecovery\int15.sys ()
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (secdrv) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (AtiPcie) ATI PCI Express (3GIO) -- C:\Windows\system32\DRIVERS\AtiPcie.sys (ATI Technologies Inc.)
DRV - (NPPTNT2) -- C:\Windows\System32\npptNT2.sys (INCA Internet Co., Ltd.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://cs.intl.acer.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://cs.intl.acer.yahoo.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultScope = {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = c:\windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.4
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {b9bfaf1c-a63f-47cd-8b9a-29526ced9060}:0.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.07.01 17:30:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: D:\PROGRAMY\Mozilla Firefox\components [2009.09.18 13:21:14 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: D:\PROGRAMY\Mozilla Firefox\plugins [2009.12.10 17:35:03 | 00,000,000 | ---D | M]

[2009.09.18 13:21:33 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\mozilla\Extensions
[2009.09.18 13:21:33 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Acer\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.12.13 23:57:56 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions
[2009.09.18 13:23:59 | 00,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.10.30 21:32:40 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (ICQ Toolbar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQ Toolbar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe ()
O4 - HKLM..\Run: [Acer Tour] File not found
O4 - HKLM..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (Acer Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
O4 - HKLM..\Run: [eRecoveryService] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] D:\Quick time player\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Acer Tour Reminder] File not found
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [fsm] File not found
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk = C:\Program Files\Logitech\QuickCam\eReg.exe File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Need for Speed™ Undercover Registration.lnk = D:\HRY\Need for Speed Undercover\Support\EAregister.exe File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm ()
O8 - Extra context menu item: Stáhnout Free Download Managerem - C:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Stáhnout video Free Download Managerem - C:\Program Files\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - C:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - C:\Program Files\Free Download Manager\dlselected.htm ()
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()

[david_sebanov]

OTL logfile created on: 14.12.2009 23:58:39 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Users\Acer\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 49,71% Memory free
4,00 Gb Paging File | 2,95 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 181,64 Gb Total Space | 46,59 Gb Free Space | 25,65% Space Free | Partition Type: NTFS
Drive D: | 181,21 Gb Total Space | 27,00 Gb Free Space | 14,90% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SKAGGS-PC
Current User Name: Acer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Acer\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Windows\System32\PnkBstrB.exe ()
PRC - D:\PROGRAMY\Spy Emergency\SpyEmergencySrv.exe (NETGATE Technologies s.r.o.)
PRC - C:\Windows\System32\PnkBstrA.exe ()
PRC - C:\Program Files\Internet Explorer\ieuser.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
PRC - C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple, Inc.)
PRC - c:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Windows\System32\WUDFHost.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
PRC - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe ()
PRC - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe (CyberLink)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.)
PRC - C:\Acer\Empowering Technology\eRecovery\eRAgent.exe (Acer Inc.)
PRC - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe (HiTRSUT)
PRC - C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)


========== Modules (SafeList) ==========

MOD - C:\Users\Acer\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (PnkBstrB) -- C:\Windows\System32\PnkBstrB.exe ()
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (SpyEmrgSrv) -- D:\PROGRAMY\Spy Emergency\SpyEmergencySrv.exe (NETGATE Technologies s.r.o.)
SRV - (PnkBstrA) -- C:\Windows\System32\PnkBstrA.exe ()
SRV - (nvsvc) -- C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
SRV - (gupdate1c9a8c434952b00) Google Update Service (gupdate1c9a8c434952b00) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (sp_rssrv) -- C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (NMIndexingService) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
SRV - (Nero BackItUp Scheduler 3) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple, Inc.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (NMSAccessU) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
SRV - (RichVideo) Cyberlink RichVideo Service(CRVS) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
SRV - (Acer HomeMedia Connect Service) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe (CyberLink)
SRV - (Ati External Event Utility) -- C:\Windows\System32\Ati2evxx.exe (ATI Technologies Inc.)
SRV - (hpqddsvc) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (Hewlett-Packard Co.)
SRV - (hpqcxs08) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (Hewlett-Packard Co.)
SRV - (eDataSecurity Service) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe (HiTRSUT)
SRV - (eRecoveryService) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe (Acer Inc.)
SRV - (LightScribeService) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (AcerMemUsageCheckService) -- C:\Acer\Empowering Technology\ePerformance\MemCheck.exe ()
SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)
SRV - (Pml Driver HPZ12) -- C:\Windows\System32\HPZipm12.dll (Hewlett-Packard)
SRV - (Net Driver HPZ12) -- C:\Windows\System32\HPZinw12.dll (Hewlett-Packard)
SRV - (ehstart) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (odserv) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (SpyEmrgAccess) -- C:\Windows\System32\drivers\spyemrg_access.sys (NETGATE Technologies s.r.o.)
DRV - (SpyEmrgGuard) -- C:\Windows\System32\drivers\spyemrg_guard.sys (NETGATE Technologies s.r.o.)
DRV - (SpyEmrg) -- C:\Windows\System32\drivers\spyemrg.sys (NETGATE Technologies s.r.o.)
DRV - (pcouffin) -- C:\Windows\System32\drivers\pcouffin.sys (VSO Software)
DRV - (usbaudio) Ovladač zvuků USB (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\Windows\System32\drivers\sfdrv01.sys (Protection Technology (StarForce))
DRV - (sp_rsdrv2) -- C:\Windows\System32\drivers\sp_rsdrv2.sys ()
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (nxsIO32) -- C:\Windows\System32\drivers\nxsIO32.sys ()
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\Windows\System32\drivers\sfvfs02.sys (Protection Technology (StarForce))
DRV - (PSDNServ) -- C:\Windows\system32\drivers\PSDNServ.sys (HiTRUST)
DRV - (psdvdisk) -- C:\Windows\system32\drivers\psdvdisk.sys (HiTRUST)
DRV - (PSDFilter) -- C:\Windows\system32\DRIVERS\psdfilter.sys (HiTRUST)
DRV - (int15) -- C:\Acer\Empowering Technology\eRecovery\int15.sys ()
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (secdrv) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (AtiPcie) ATI PCI Express (3GIO) -- C:\Windows\system32\DRIVERS\AtiPcie.sys (ATI Technologies Inc.)
DRV - (NPPTNT2) -- C:\Windows\System32\npptNT2.sys (INCA Internet Co., Ltd.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://cs.intl.acer.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://cs.intl.acer.yahoo.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultScope = {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = c:\windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.4
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {b9bfaf1c-a63f-47cd-8b9a-29526ced9060}:0.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.07.01 17:30:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: D:\PROGRAMY\Mozilla Firefox\components [2009.09.18 13:21:14 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: D:\PROGRAMY\Mozilla Firefox\plugins [2009.12.10 17:35:03 | 00,000,000 | ---D | M]

[2009.09.18 13:21:33 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\mozilla\Extensions
[2009.09.18 13:21:33 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Acer\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.12.13 23:57:56 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions
[2009.09.18 13:23:59 | 00,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.10.30 21:32:40 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Acer\AppData\Roaming\mozilla\Firefox\Profiles\mls8usi3.default\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (ICQ Toolbar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQ Toolbar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe ()
O4 - HKLM..\Run: [Acer Tour] File not found
O4 - HKLM..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (Acer Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
O4 - HKLM..\Run: [eRecoveryService] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] D:\Quick time player\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Acer Tour Reminder] File not found
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [fsm] File not found
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk = C:\Program Files\Logitech\QuickCam\eReg.exe File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Need for Speed™ Undercover Registration.lnk = D:\HRY\Need for Speed Undercover\Support\EAregister.exe File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm ()
O8 - Extra context menu item: Stáhnout Free Download Managerem - C:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Stáhnout video Free Download Managerem - C:\Program Files\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - C:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - C:\Program Files\Free Download Manager\dlselected.htm ()
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()

[david_sebanov]

O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDow ... ab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 4408251656 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{be9588c4-7b47-11dd-b1f6-001c2501c8fb}\Shell - "" = AutoRun
O33 - MountPoints2\{be9588c4-7b47-11dd-b1f6-001c2501c8fb}\Shell\AutoRun\command - "" = J:\install.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009.12.14 23:54:51 | 00,538,112 | ---- | C] (OldTimer Tools) -- C:\Users\Acer\Desktop\OTL.exe
[2009.12.14 22:17:01 | 00,000,000 | ---D | C] -- C:\Users\Acer\DoctorWeb
[2009.12.14 22:05:06 | 25,161,184 | ---- | C] (Doctor Web, Ltd.) -- C:\Users\Acer\Desktop\launch.exe
[2009.12.14 22:03:25 | 00,050,688 | ---- | C] (Atribune.org) -- C:\Users\Acer\Desktop\ATF-Cleaner.exe
[2009.12.14 21:34:31 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\backups
[2009.12.14 19:52:42 | 00,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Users\Acer\Desktop\HijackThis.exe
[2009.12.14 18:23:06 | 00,000,000 | ---D | C] -- C:\Users\Acer\AppData\Roaming\Malwarebytes
[2009.12.14 18:22:57 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009.12.14 18:22:53 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009.12.14 18:22:53 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009.12.11 15:32:10 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2009.12.11 15:32:05 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2009.12.11 15:21:25 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009.12.11 15:21:22 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009.12.11 15:21:20 | 00,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2009.12.11 15:17:58 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2009.12.11 14:33:19 | 00,000,000 | ---D | C] -- C:\Program Files\Symantec
[2009.12.11 14:30:38 | 00,000,000 | ---D | C] -- C:\Program Files\Norton Ghost
[2009.12.11 14:30:38 | 00,000,000 | ---D | C] -- C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
[2009.12.09 17:33:47 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\landa Best of
[2009.12.09 16:46:38 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\32
[2009.12.09 14:19:20 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\www.djhonzik.wbs.cz - Feel The Music Mix 2009
[2009.12.05 16:22:05 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\Eminem - The Eminem show (2002)
[2009.12.05 15:46:15 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\pepino vol. December 2009
[2009.12.04 02:24:55 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\Made in Italy CZ (2005)
[2009.12.03 22:33:26 | 00,000,000 | ---D | C] -- C:\Users\Acer\Documents\Command and Conquer Generals Data
[2009.12.03 20:27:01 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\Eminem - the Eminem show
[2009.11.29 02:47:25 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2009.11.29 00:43:06 | 00,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2009.11.27 15:05:05 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\videoklipy 3
[2009.11.19 11:04:59 | 00,000,000 | ---D | C] -- C:\Users\Acer\AppData\Roaming\Spy Emergency
[2009.11.19 11:04:50 | 00,018,232 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\Windows\System32\drivers\spyemrg_access.sys
[2009.11.19 11:04:50 | 00,014,392 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\Windows\System32\drivers\spyemrg_guard.sys
[2009.11.19 11:04:50 | 00,012,344 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\Windows\System32\drivers\spyemrg.sys
[2009.11.19 11:04:49 | 00,000,000 | ---D | C] -- C:\ProgramData\NETGATE
[2009.11.18 16:46:12 | 00,000,000 | ---D | C] -- C:\Program Files\Windows User
[2009.11.18 16:31:54 | 00,000,000 | ---D | C] -- C:\Program Files\Steam
[2009.11.17 15:24:11 | 00,000,000 | ---D | C] -- C:\Users\Acer\AppData\Local\PokerStars
[2009.11.16 16:40:12 | 00,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2009.11.16 13:51:34 | 00,000,000 | ---D | C] -- C:\Users\Acer\Desktop\DIVOKEJ BILL - Mlsna (CZ 2009)
[2009.11.16 13:12:42 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2009.05.17 15:36:16 | 00,047,360 | ---- | C] (VSO Software) -- C:\Users\Acer\AppData\Roaming\pcouffin.sys
[2007.05.10 11:39:29 | 00,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009.12.15 00:02:30 | 04,456,448 | -HS- | M] () -- C:\Users\Acer\ntuser.dat
[2009.12.15 00:00:14 | 00,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{16463280-DF4C-405A-86C8-1D16A2010C09}.job
[2009.12.14 23:54:54 | 00,538,112 | ---- | M] (OldTimer Tools) -- C:\Users\Acer\Desktop\OTL.exe
[2009.12.14 23:47:42 | 00,000,463 | ---- | M] () -- C:\Users\Acer\Desktop\DrWeb.csv
[2009.12.14 23:11:02 | 00,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009.12.14 22:47:13 | 00,005,680 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.14 22:47:12 | 00,005,680 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.14 22:05:49 | 25,161,184 | ---- | M] (Doctor Web, Ltd.) -- C:\Users\Acer\Desktop\launch.exe
[2009.12.14 22:03:25 | 00,050,688 | ---- | M] (Atribune.org) -- C:\Users\Acer\Desktop\ATF-Cleaner.exe
[2009.12.14 19:52:45 | 00,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Users\Acer\Desktop\HijackThis.exe
[2009.12.14 18:47:24 | 00,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009.12.14 18:47:17 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.12.14 18:46:58 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.12.14 18:46:48 | 21,448,90880 | -HS- | M] () -- C:\hiberfil.sys
[2009.12.14 18:45:37 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.14 18:45:37 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TM.blf
[2009.12.14 18:45:30 | 03,866,893 | -H-- | M] () -- C:\Users\Acer\AppData\Local\IconCache.db
[2009.12.14 17:00:17 | 00,112,128 | ---- | M] () -- C:\Users\Acer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.12.13 23:20:15 | 00,002,037 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2009.12.11 16:07:49 | 86,894,298 | ---- | M] () -- C:\Users\Acer\Desktop\www.djhonzik.wbs.cz - In The Radio Mix 2009 - volume 3.rar
[2009.12.11 15:38:22 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 14:56:55 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 14:56:55 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TM.blf
[2009.12.11 01:49:41 | 00,080,712 | ---- | M] () -- C:\Users\Acer\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.12.11 01:34:04 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 01:34:04 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 01:34:04 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TM.blf
[2009.12.11 01:19:33 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 01:19:33 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TM.blf
[2009.12.11 00:48:53 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 00:15:00 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 00:15:00 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 00:15:00 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TM.blf
[2009.12.10 23:54:27 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.10 23:54:27 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TM.blf
[2009.12.10 23:40:59 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.10 23:26:28 | 82,773,7487 | -H-- | M] () -- C:\Users\Acer\Desktop\sw11b-hq.wmv.part2.rar
[2009.12.09 18:37:48 | 05,164,832 | ---- | M] () -- C:\Users\Acer\Desktop\Sidney Samson feat. Wizard Sleeve - Riverside (Let's Go!) (Out 4th January).mp3
[2009.12.09 18:16:16 | 05,138,840 | ---- | M] () -- C:\Users\Acer\Desktop\sidney samson - riverside (original mix).mp31260379118_[mp3.teledyski.info].mp3
[2009.12.05 16:44:28 | 01,393,930 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.12.05 16:44:28 | 00,598,600 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.12.05 16:44:28 | 00,586,980 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.12.05 16:44:28 | 00,114,808 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.12.05 16:44:28 | 00,101,052 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.12.04 12:10:11 | 00,317,504 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.12.03 22:54:44 | 00,000,618 | ---- | M] () -- C:\Windows\eReg.dat
[2009.12.03 22:50:45 | 00,000,529 | ---- | M] () -- C:\Users\Public\Desktop\Command & Conquer Generals.lnk
[2009.12.03 21:33:37 | 13,515,14252 | ---- | M] () -- C:\Users\Acer\Desktop\Command and Conquer GENERALS.rar
[2009.12.03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009.12.03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009.12.03 13:28:02 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2009.12.01 21:59:54 | 15,050,69046 | ---- | M] () -- C:\Users\Acer\Desktop\STAR WARS Epizoda 3 Pomsta SithĹŻ-AkÄŤnĂ­ Sci-fi,CZ-Dub.AVI
[2009.12.01 19:12:10 | 00,000,587 | ---- | M] () -- C:\Users\Acer\Desktop\Hamachi.lnk
[2009.11.29 20:27:14 | 73,429,6064 | ---- | M] () -- C:\Users\Acer\Desktop\Star Wars Epizoda II - Klony CD1 cz.avi
[2009.11.29 20:03:44 | 73,387,4176 | ---- | M] () -- C:\Users\Acer\Desktop\Star Wars Epizoda II - Klony CD2 cz.avi
[2009.11.29 02:48:44 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.11.29 00:28:37 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.11.29 00:28:37 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TM.blf
[2009.11.28 17:30:13 | 00,000,671 | ---- | M] () -- C:\Users\Acer\AppData\Roaming\vso_ts_preview.xml
[2009.11.27 17:04:38 | 73,388,2508 | ---- | M] () -- C:\Users\Acer\Desktop\Mrnousci - legrace anim -budul-70min- bz bz..avi
[2009.11.25 00:54:29 | 01,280,480 | ---- | M] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe
[2009.11.25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys
[2009.11.25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2009.11.25 00:49:48 | 00,053,328 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2009.11.25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2009.11.25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2009.11.25 00:47:28 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\Windows\System32\AvastSS.scr
[2009.11.19 00:15:44 | 73,381,6832 | ---- | M] () -- C:\Users\Acer\Desktop\Star Wars Epizoda I - Skrytá hrozba CD2 cz.avi
[2009.11.19 00:15:16 | 73,442,3040 | ---- | M] () -- C:\Users\Acer\Desktop\Star Wars Epizoda I - Skrytá hrozba CD1 cz.avi
[2009.11.18 17:59:02 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.11.18 16:18:23 | 00,524,288 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{12e28d9c-994a-11de-bf00-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.11.18 16:18:23 | 00,065,536 | -HS- | M] () -- C:\Users\Acer\ntuser.dat{12e28d9c-994a-11de-bf00-001c2501c8fb}.TM.blf
[2009.11.17 23:48:38 | 07,544,740 | -H-- | M] () -- C:\Users\Acer\Desktop\steam-keygen(1).zip
[2009.11.17 23:48:14 | 07,544,740 | -H-- | M] () -- C:\Users\Acer\Desktop\steam-keygen.zip
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009.12.14 23:47:42 | 00,000,463 | ---- | C] () -- C:\Users\Acer\Desktop\DrWeb.csv
[2009.12.13 23:20:15 | 00,002,037 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2009.12.11 16:07:48 | 86,894,298 | ---- | C] () -- C:\Users\Acer\Desktop\www.djhonzik.wbs.cz - In The Radio Mix 2009 - volume 3.rar
[2009.12.11 15:06:39 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 15:06:39 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 15:06:39 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{0c142129-e65a-11de-97f2-001c2501c8fb}.TM.blf
[2009.12.11 01:25:32 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 01:25:32 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 01:25:32 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{80fb4297-e5e9-11de-9d30-001c2501c8fb}.TM.blf
[2009.12.11 00:24:15 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 00:24:15 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 00:24:15 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34619b03-e5e0-11de-8179-001c2501c8fb}.TM.blf
[2009.12.11 00:04:22 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.11 00:04:21 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.11 00:04:21 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{3a541b16-e5de-11de-bb8d-001c2501c8fb}.TM.blf
[2009.12.10 23:40:59 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.12.10 23:40:59 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.12.10 23:40:59 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{bdf576a3-e5a8-11de-bc18-001c2501c8fb}.TM.blf
[2009.12.10 17:33:48 | 82,773,7487 | -H-- | C] () -- C:\Users\Acer\Desktop\sw11b-hq.wmv.part2.rar
[2009.12.09 18:37:31 | 05,164,832 | ---- | C] () -- C:\Users\Acer\Desktop\Sidney Samson feat. Wizard Sleeve - Riverside (Let's Go!) (Out 4th January).mp3
[2009.12.09 18:10:12 | 05,138,840 | ---- | C] () -- C:\Users\Acer\Desktop\sidney samson - riverside (original mix).mp31260379118_[mp3.teledyski.info].mp3
[2009.12.03 23:32:42 | 66,817,2288 | ---- | C] () -- C:\Users\Acer\Desktop\Generals1.ISO
[2009.12.03 22:50:45 | 00,000,529 | ---- | C] () -- C:\Users\Public\Desktop\Command & Conquer Generals.lnk
[2009.12.03 22:31:13 | 00,000,618 | ---- | C] () -- C:\Windows\eReg.dat
[2009.12.03 20:06:12 | 13,515,14252 | ---- | C] () -- C:\Users\Acer\Desktop\Command and Conquer GENERALS.rar
[2009.12.01 19:12:10 | 00,000,587 | ---- | C] () -- C:\Users\Acer\Desktop\Hamachi.lnk
[2009.12.01 18:53:31 | 15,050,69046 | ---- | C] () -- C:\Users\Acer\Desktop\STAR WARS Epizoda 3 Pomsta SithĹŻ-AkÄŤnĂ­ Sci-fi,CZ-Dub.AVI
[2009.11.29 14:31:10 | 73,387,4176 | ---- | C] () -- C:\Users\Acer\Desktop\Star Wars Epizoda II - Klony CD2 cz.avi
[2009.11.29 14:30:09 | 73,429,6064 | ---- | C] () -- C:\Users\Acer\Desktop\Star Wars Epizoda II - Klony CD1 cz.avi
[2009.11.29 00:32:43 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.11.29 00:32:43 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.11.29 00:32:43 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{34237da4-dc73-11de-aebd-001c2501c8fb}.TM.blf
[2009.11.27 16:23:50 | 73,388,2508 | ---- | C] () -- C:\Users\Acer\Desktop\Mrnousci - legrace anim -budul-70min- bz bz..avi
[2009.11.18 22:55:41 | 73,381,6832 | ---- | C] () -- C:\Users\Acer\Desktop\Star Wars Epizoda I - Skrytá hrozba CD2 cz.avi
[2009.11.18 22:55:20 | 73,442,3040 | ---- | C] () -- C:\Users\Acer\Desktop\Star Wars Epizoda I - Skrytá hrozba CD1 cz.avi
[2009.11.18 16:24:56 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TMContainer00000000000000000002.regtrans-ms
[2009.11.18 16:24:56 | 00,524,288 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TMContainer00000000000000000001.regtrans-ms
[2009.11.18 16:24:56 | 00,065,536 | -HS- | C] () -- C:\Users\Acer\ntuser.dat{c8fb31f8-d454-11de-9a78-001c2501c8fb}.TM.blf
[2009.11.17 23:48:32 | 07,544,740 | -H-- | C] () -- C:\Users\Acer\Desktop\steam-keygen(1).zip
[2009.11.17 23:47:45 | 07,544,740 | -H-- | C] () -- C:\Users\Acer\Desktop\steam-keygen.zip
[2009.09.18 13:05:02 | 01,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll
[2009.07.30 00:25:12 | 00,000,821 | ---- | C] () -- C:\Windows\QIII.INI
[2009.07.27 23:44:08 | 00,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2009.07.27 22:42:39 | 00,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2009.07.27 22:42:39 | 00,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2009.07.27 22:42:38 | 00,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2009.07.02 11:50:59 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.05.17 15:37:58 | 00,000,671 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\vso_ts_preview.xml
[2009.05.17 15:37:38 | 00,000,034 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\pcouffin.log
[2009.05.17 15:36:16 | 00,087,608 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\inst.exe
[2009.05.17 15:36:16 | 00,007,887 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\pcouffin.cat
[2009.05.17 15:36:16 | 00,001,144 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\pcouffin.inf
[2009.05.12 19:34:36 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.04.19 16:35:04 | 00,126,976 | ---- | C] () -- C:\Windows\gdf.dll
[2009.03.12 16:24:27 | 00,000,311 | ---- | C] () -- C:\Windows\doom3.ini
[2009.02.10 16:49:11 | 00,000,810 | ---- | C] () -- C:\Windows\Rtcw.INI
[2009.02.05 18:42:57 | 00,000,000 | ---- | C] () -- C:\Windows\galaxy.ini
[2008.12.28 15:47:50 | 00,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.11.12 12:39:09 | 00,000,197 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2008.11.05 19:33:18 | 00,000,044 | ---- | C] () -- C:\Windows\nfsc_patch.ini
[2008.10.22 09:17:56 | 00,141,312 | ---- | C] () -- C:\Windows\System32\drivers\sp_rsdrv2.sys
[2008.09.05 17:50:09 | 00,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
[2008.09.05 13:45:27 | 00,000,773 | ---- | C] () -- C:\Windows\disney.ini
[2008.09.04 18:16:25 | 00,237,568 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2008.07.27 18:33:35 | 00,002,208 | ---- | C] () -- C:\Windows\System32\drivers\nxsIO32.sys
[2008.07.22 14:10:28 | 00,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2008.03.31 16:24:18 | 00,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008.03.31 16:24:17 | 00,022,328 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\PnkBstrK.sys
[2008.03.18 21:47:56 | 00,005,248 | ---- | C] () -- C:\Windows\System32\drivers\giveio.sys
[2008.03.17 00:13:36 | 00,000,288 | ---- | C] () -- C:\Windows\ODBC.INI
[2008.03.16 14:05:28 | 00,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2008.03.16 14:05:23 | 00,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008.03.16 14:05:23 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2008.03.12 18:53:56 | 00,000,000 | ---- | C] () -- C:\Users\Acer\AppData\Roaming\wklnhst.dat
[2008.02.28 20:57:49 | 00,000,790 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008.02.26 18:16:51 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.02.18 00:26:56 | 00,112,128 | ---- | C] () -- C:\Users\Acer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.02.17 19:10:37 | 00,000,632 | ---- | C] () -- C:\Windows\CoDUO.INI
[2008.02.08 16:51:11 | 00,000,042 | ---- | C] () -- C:\Windows\Acer(Wide).ini
[2008.02.08 16:51:10 | 00,000,044 | ---- | C] () -- C:\Windows\Acer(Normal).ini
[2007.10.04 19:33:10 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2007.10.04 19:33:10 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2007.09.28 18:56:22 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2007.09.28 18:53:06 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2007.05.10 21:12:28 | 00,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007.05.10 19:55:59 | 00,000,834 | ---- | C] () -- C:\Windows\generic.ini
[2007.05.10 19:55:59 | 00,000,123 | ---- | C] () -- C:\Windows\Alaunch.ini
[2007.05.10 19:55:56 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007.05.10 11:39:29 | 00,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007.02.06 22:58:10 | 00,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007.02.06 22:57:58 | 00,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007.02.06 22:57:20 | 00,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007.02.06 22:56:30 | 00,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007.02.06 22:56:28 | 00,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007.02.06 22:52:08 | 00,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006.12.25 14:44:48 | 00,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006.11.02 13:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.09.28 14:55:34 | 00,053,248 | ---- | C] () -- C:\Windows\System32\PhysXLoader.dll
[2006.09.26 14:01:40 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2006.09.08 09:01:50 | 00,045,056 | R--- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2001.12.26 14:12:30 | 00,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001.09.03 21:46:38 | 00,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001.07.30 14:33:56 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001.07.23 20:04:36 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[1998.06.10 00:00:00 | 00,015,120 | ---- | C] () -- C:\Windows\System32\REPUTIL.DLL
[1996.04.03 20:33:26 | 00,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== LOP Check ==========

[2008.03.14 15:11:24 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Ace
[2009.10.30 21:43:37 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Apowersoft
[2008.08.13 20:05:52 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Atari
[2008.09.15 16:28:40 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Azureus
[2008.03.02 13:38:25 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\BitSpirit
[2009.02.09 16:51:35 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Capcom
[2008.09.30 22:52:39 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Cool Record Edit Pro
[2009.12.11 15:04:01 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\DAEMON Tools
[2009.10.02 21:52:47 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\DMCache
[2008.08.13 21:06:15 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\flightgear.org
[2009.12.14 23:54:58 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Free Download Manager
[2009.02.23 20:15:57 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\gtk-2.0
[2008.12.30 17:41:13 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\ICQ
[2008.02.28 23:28:27 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\ICQ Toolbar
[2008.12.13 02:12:29 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Leadertech
[2009.07.07 17:25:29 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\LG Electronics
[2008.09.05 15:31:18 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Megaupload
[2009.09.15 14:58:22 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\My Battle for Middle-earth(tm) II Files
[2008.08.13 20:28:45 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\MyMahj
[2008.11.30 18:34:55 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Red Alert 3 Demo
[2009.06.30 23:35:58 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\ScummVM
[2009.10.01 13:38:41 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Software Informer
[2009.12.14 21:10:41 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Spy Emergency
[2009.12.14 19:46:03 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Spyware Terminator
[2009.09.10 15:00:07 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\TeamViewer
[2008.09.18 20:17:32 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Template
[2009.11.28 17:30:14 | 00,000,000 | ---D | M] -- C:\Users\Acer\AppData\Roaming\Vso
[2009.12.14 18:45:56 | 00,032,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.12.15 00:00:14 | 00,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{16463280-DF4C-405A-86C8-1D16A2010C09}.job

========== Purity Check ==========


< End of report >

[Damned]

Než to zkontroluju tak:

1) stáhni si FixIEDef

2) Ukonči všechny aplikace a spusť FixIEDef

3) potvrdit licenční ujednání tlačítkem [Accept]

4) zahájit scan tlačítkem [Scan] (během scanu budou ukončeny všechny instance Internet Eploreru a Windows Exploreru (zmizí ikony na ploše, taskbar, atd), takže doporučuju veškerou práci uložit a před spuštěním scanu aplikace ukončit)

5) po dokončení scanu ukončit FixIEDef tlačítkem [Exit]

6) pokud se po dokončení nespustí windows explorer, zmáčknout CTRL+SHIFT+ESC a spustit windows explorer (plochu) pomocí menu Soubor > nová úloha > explorer

7) zkopíruj sem FixIEDef log, kterej se uložil na plochu...

[david_sebanov]

FixIEDef sem stahnul ale když dám SCAN objeví se chyba a v ní napsáno: " AutoIT Error - Line - 1: the requested action with this object has failed. " a program se ukončí.

[Damned]

Odinstaluj si Spy Emergency.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
O3 - HKLM\..\Toolbar: (ICQ Toolbar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (ICQ Toolbar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll File not found
O4 - HKLM..\Run: [Acer Tour] File not found
O4 - HKLM..\Run: [eRecoveryService] File not found
O4 - HKCU..\Run: [Acer Tour Reminder] File not found
O4 - HKCU..\Run: [fsm] File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk = C:\Program Files\Logitech\QuickCam\eReg.exe File not found
O4 - Startup: C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Need for Speed™ Undercover Registration.lnk = D:\HRY\Need for Speed Undercover\Support\EAregister.exe File not found
O16 - DPF: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)

:Files
C:\Windows\*.tmp
C:\Windows\System32\*.tmp
C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.hdmp
C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp
C:\Windows\tasks\SA.DAT
C:\Users\Acer\Desktop\steam-keygen(1).zip
C:\Users\Acer\Desktop\steam-keygen.zip
C:\ProgramData\ezsidmv.dat
C:\Users\Acer\AppData\Roaming\ICQ Toolbar

:Reg

:Commands
[purity]
[emptytemp]
[resethosts]
[Reboot]


Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[david_sebanov]

All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Acer Tour deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Acer Tour Reminder deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\fsm deleted successfully.
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk moved successfully.
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Need for Speed™ Undercover Registration.lnk moved successfully.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
========== FILES ==========
C:\Windows\msdownld.tmp folder moved successfully.
File\Folder C:\Windows\System32\*.tmp not found.
File\Folder C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.hdmp not found.
File\Folder C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp not found.
C:\Windows\tasks\SA.DAT moved successfully.
C:\Users\Acer\Desktop\steam-keygen(1).zip moved successfully.
C:\Users\Acer\Desktop\steam-keygen.zip moved successfully.
C:\ProgramData\ezsidmv.dat moved successfully.
C:\Users\Acer\AppData\Roaming\ICQ Toolbar folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Acer
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 484385071 bytes
->Java cache emptied: 21206305 bytes
->FireFox cache emptied: 115654205 bytes

User: All Users

User: boinc_master
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 101692 bytes
->Temporary Internet Files folder emptied: 41654 bytes
->Java cache emptied: 25493450 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: -1143063616 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = -473,16 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.1.17.0 log created on 12152009_013319

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\CLDigitalHome\PCMMediaServer.log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Damned]

Hlásí ještě něco? Já tam už žádnou neplechu nevidím.

[david_sebanov]

Potom co sem udelal FIX pres to OTL avast do teto doby opet ohlasil tyto upozornění.

:

15.12.2009 1:51:53 SYSTEM 1704 Virus "Win32:FakeAlert-FC [Trj]" byl nalezen v souboru "C:\Windows\Temp\txrs.tmp\svchost.exe".
15.12.2009 1:46:45 SYSTEM 1704 Virus "Win32:FakeAlert-FC [Trj]" byl nalezen v souboru "C:\Windows\Temp\psri.tmp\svchost.exe".
15.12.2009 1:41:39 SYSTEM 1704 Virus "Win32:FakeAlert-FC [Trj]" byl nalezen v souboru "C:\Windows\Temp\toui.tmp\svchost.exe".
15.12.2009 1:38:43 SYSTEM 1704 Virus "Win32:Alureon-ET [Rtk]" byl nalezen v souboru "C:\Users\Acer\AppData\Local\Temp\WERAFD0.tmp.hdmp".
15.12.2009 1:38:14 SYSTEM 1704 Funkce setifaceUpdatePackages() selhala. Návratová hodnota je 0x20000004, dwRes je 20000004.
15.12.2009 1:37:58 SYSTEM 1704 Virus "Win32:Alureon-ET [Rtk]" byl nalezen v souboru "C:\Users\Acer\AppData\Local\Temp\WER89AA.tmp.hdmp".
15.12.2009 1:37:58 SYSTEM 1704 Virus "Win32:Alureon-ET [Rtk]" byl nalezen v souboru "C:\Users\Acer\AppData\Local\Temp\WER96E3.tmp.hdmp".
15.12.2009 1:37:58 SYSTEM 1704 Virus "Win32:Alureon-ET [Rtk]" byl nalezen v souboru "C:\Users\Acer\AppData\Local\Temp\WER980C.tmp.hdmp".
15.12.2009 1:37:25 SYSTEM 1704 Virus "Win32:Alureon-ET [Rtk]" byl nalezen v souboru "C:\Windows\Temp\WER1556.tmp.hdmp".

[Damned]

Vypni Body obnovení, použij ATF-Cleaner a pak si Body obnovení opět zapni.
Zkus si zde http://www.edisk.cz/stahni/32942/tools.rar_3.88MB.html

stáhnout některé prográmky co by se nám mohly hodit.
Rozbal si archiv do svého adresáře. Soubory jsou záměrně pojmenované jinak než původní v návodech, tak se nediv.
Spusť poté
VerTerm= Combofix podle návodu a pak sem vlož z něho log.

Návod na Combofix:
ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah