kontrola hjt

Příspěvekod **jaro3** » 03 úno 2012 18:58

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.

Jak to vypadá?

Reklama

mafian · Příspěvekod **mafian** » 03 úno 2012 20:11

no když to projedu t cleaner a combu tak je to tak na cca5 min lepší ale pak se zase spomalí načítání.

Příspěvekod **jaro3** » 04 úno 2012 08:19

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

mafian · Příspěvekod **mafian** » 04 úno 2012 09:17

----------------------------------------------------------------------------
CrystalDiskInfo 4.2.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2012/02/04 9:14:30

-- Controller Map ----------------------------------------------------------
+ AMD SATA Controller(Native IDE Mode) [ATA]
+ Primární kanál IDE (0)
- TSSTcorp CDDVDW SH-S223F
- WDC WD5000AADS-00S9B0
+ Sekundární kanál IDE (1)
- SAMSUNG HD502IJ
+ AMD PCI IDE Controller [ATA]
- Primární kanál IDE (0)
- Sekundární kanál IDE (1)
+ ABACSDW8 IDE Controller [SCSI]
- WLMFSV G1AV41IZ SCSI CdRom Device
- AZN5YD9U IDE Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000AADS-00S9B0 : 500.1 GB [0-0-0, pd1]
(2) SAMSUNG HD502IJ : 500.1 GB [1-1-0, pd1]

----------------------------------------------------------------------------
(1) WDC WD5000AADS-00S9B0
----------------------------------------------------------------------------
Model : WDC WD5000AADS-00S9B0
Firmware : 01.00A01
Serial Number : WD-WCAV9U944553
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 976771055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 304 hod.
Power On Count : 140 krát
Temparature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 190 189 _21 000000000D9B Čas na roztočení ploten
04 100 100 __0 00000000008F Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 100 100 __0 000000000130 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 00000000008C Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000016 Počet vypnutí disku
C1 199 199 __0 000000001756 Počet cyklů načítání/vymazání
C2 117 107 __0 00000000001A Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000004 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 56
020: 39 55 39 34 34 35 35 33 00 00 FF FF 00 32 30 31
030: 2E 30 30 41 30 31 57 44 43 20 57 44 35 30 30 30
040: 41 41 44 53 2D 30 30 53 39 42 30 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 44 00 40
0A0: 01 FE 00 00 74 6B 7D 61 41 23 74 69 BC 41 41 23
0B0: 40 7F 00 39 00 39 00 00 FF FE 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 57 EF 3A 38 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 01 4E E1 04 8A 50 7F
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 00 00 00 00 00 00 00 00 16 D9 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 37 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 10 1E 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8E A5

----------------------------------------------------------------------------
(2) SAMSUNG HD502IJ
----------------------------------------------------------------------------
Model : SAMSUNG HD502IJ
Firmware : 1AA01113
Serial Number : S13TJ1MS201620
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976771055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 6693 hod.
Power On Count : 3891 krát
Temparature : 20 C (68 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _86 _86 _11 000000001432 Čas na roztočení ploten
04 _96 _96 __0 000000000F46 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _99 _99 __0 000000001A25 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 000000000F33 Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 _98 _98 __0 000000000002 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _85 _67 __0 00000F0B000F Teplota toku vzduchu
C2 _80 _65 __0 0000140B0014 Teplota
C3 100 100 __0 000000000150 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 _99 __0 000000000140 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 253 253 __0 000000000000 Počet chyb při čtení programů z disku

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 40 3F FF C8 37 00 10 88 56 02 2A 00 3F 00 00
010: 00 00 00 00 53 31 33 54 4A 31 4D 53 32 30 31 36
020: 32 30 20 20 20 20 20 20 00 03 80 00 00 04 31 41
030: 41 30 31 31 31 33 53 41 4D 53 55 4E 47 20 48 44
040: 35 30 32 49 4A 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 4C 00 40
0A0: 00 F8 00 52 74 6B 7F 69 41 33 74 69 BC 41 41 23
0B0: 40 FF 00 39 00 39 00 00 FF FE 00 00 FE 00 00 08
0C0: 00 05 00 5D 86 A0 00 01 57 EF 3A 38 00 00 00 00
0D0: 00 64 00 00 00 00 00 00 50 02 4E 90 01 0D 2C 61
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 3F 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 04 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B7 A5

Příspěvekod **jaro3** » 04 úno 2012 09:30

Disky vypadají dobře.
Po Memtestu:
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

mafian · Příspěvekod **mafian** » 04 úno 2012 11:04

tak memtest jsem nechal běžet asi 2 hodiny cca dole bylo 420% a o chyb
OTL logfile created on: 4.2.2012 11:00:40 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\uživatel\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,63 Gb Available Physical Memory | 81,01% Memory free
5,09 Gb Paging File | 4,63 Gb Available in Paging File | 91,03% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 68,36 Gb Total Space | 48,28 Gb Free Space | 70,62% Space Free | Partition Type: NTFS
Drive D: | 59,63 Gb Total Space | 50,67 Gb Free Space | 84,98% Space Free | Partition Type: NTFS
Drive F: | 337,77 Gb Total Space | 89,97 Gb Free Space | 26,64% Space Free | Partition Type: NTFS
Drive G: | 127,99 Gb Total Space | 45,12 Gb Free Space | 35,25% Space Free | Partition Type: NTFS
Drive I: | 68,36 Gb Total Space | 40,20 Gb Free Space | 58,81% Space Free | Partition Type: NTFS
Drive K: | 171,77 Gb Total Space | 41,45 Gb Free Space | 24,13% Space Free | Partition Type: NTFS
Drive L: | 97,65 Gb Total Space | 47,98 Gb Free Space | 49,13% Space Free | Partition Type: NTFS

Computer Name: ADMIN | User Name: uživatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Documents and Settings\uživatel\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe (PC Tools)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe ()
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (StarWind Software)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (ABBYY (BIT Software))

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files\AVAST Software\Avast\defs\12020400\algo.dll ()
MOD - C:\Program Files\AVAST Software\Avast\defs\12020301\algo.dll ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - (HidServ) -- File not found
SRV - (PCToolsSSDMonitorSvc) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe (PC Tools)
SRV - (avast! Firewall) -- C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (Správce výběru OS) -- C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe ()
SRV - (StarWindServiceAE) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (StarWind Software)
SRV - (ABBYY.Licensing.FineReader.Professional.9.0) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (ABBYY (BIT Software))

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (gdrv) -- C:\WINDOWS\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (snapman) -- C:\WINDOWS\system32\DRIVERS\snapman.sys (Acronis)
DRV - (aswFW) -- C:\WINDOWS\System32\drivers\aswFW.sys (AVAST Software)
DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswNdis2) -- C:\WINDOWS\System32\drivers\aswNdis2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswNdis) -- C:\WINDOWS\system32\DRIVERS\aswNdis.sys (ALWIL Software)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (PAR1284) -- C:\WINDOWS\system32\Par1284.sys (Warp Nine Engineering)
DRV - (WinDriver6) -- C:\WINDOWS\system32\drivers\windrvr6.sys (Jungo)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (RTHDMIAzAudService) -- C:\WINDOWS\system32\drivers\RtHDMI.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (amdide) -- C:\WINDOWS\System32\DRIVERS\amdide.sys (Advanced Micro Devices)

[color=#E56717]========== Standard Registry (All) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2011.12.29 13:00:04 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2012.02.02 16:49:51 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInstrumentation = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_02)
O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_02)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_02)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E0A2D612-9559-4215-AAD7-1B34697AC779}: NameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F8B99982-EFB9-4C64-B43C-FA0CDD747D4D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\lid {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) -C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) -C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") -C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) -C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) -C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) -C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) -C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) -C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) -C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) -C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) -C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) -C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2012.02.04 10:57:42 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2012.02.04 09:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\MemTest
[2012.02.04 09:28:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\uživatel\Recent
[2012.02.04 09:28:42 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.02.04 09:14:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\OpenCandy
[2012.02.04 09:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2012.02.04 09:14:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CrystalDiskInfo
[2012.02.02 16:42:39 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.02 16:36:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.02 16:35:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\uživatel\Nabídka Start\Programy\Nástroje pro správu
[2012.02.02 16:35:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\uživatel\Dokumenty\Filmy
[2012.02.02 14:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Malwarebytes
[2012.02.02 14:45:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.02.02 14:45:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.02.02 14:45:22 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.02 14:45:22 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.02 14:44:45 | 009,502,424 | ---- | C] (Malwarebytes Corporation ) -- C:\mbam-setup-1.60.1.1000.exe
[2012.02.02 14:42:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\backups
[2012.02.01 16:59:04 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\uživatel\Dokumenty\HiJackThis.exe
[2012.02.01 11:54:03 | 000,000,000 | ---D | C] -- C:\TempBK
[2012.01.31 17:35:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\ZAPIS
[2012.01.29 17:29:04 | 000,193,696 | ---- | C] (Jungo) -- C:\WINDOWS\System32\drivers\windrvr6.sys
[2012.01.29 17:28:57 | 000,143,360 | ---- | C] (Jungo) -- C:\WINDOWS\System32\wdapi921.dll
[2012.01.29 17:28:57 | 000,122,880 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\usbpdm.dll
[2012.01.29 17:28:57 | 000,110,592 | ---- | C] (NEXIQ Technologies, Inc.) -- C:\WINDOWS\System32\OsAbstraction.dll
[2012.01.29 17:28:57 | 000,098,304 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\pdmdrv.dll
[2012.01.29 17:28:57 | 000,090,112 | ---- | C] (NNT, Inc.) -- C:\WINDOWS\System32\SerialDV.dll
[2012.01.29 17:28:57 | 000,081,920 | ---- | C] (Micro Processor Systems, Inc.) -- C:\WINDOWS\System32\installNT.exe
[2012.01.29 17:28:57 | 000,073,728 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\MitaSerial.DLL
[2012.01.29 17:28:57 | 000,073,728 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\GenSerial.DLL
[2012.01.29 17:28:57 | 000,073,728 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\CutSerial.DLL
[2012.01.29 17:28:57 | 000,069,632 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\IccSerial.DLL
[2012.01.29 17:28:57 | 000,069,632 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\ICCIT4Serial.DLL
[2012.01.29 17:28:57 | 000,061,440 | ---- | C] (NNT, Inc.) -- C:\WINDOWS\System32\NXWBTAPI.dll
[2012.01.29 17:28:57 | 000,054,792 | ---- | C] (Warp Nine Engineering) -- C:\WINDOWS\System32\Par1284.sys
[2012.01.29 17:28:57 | 000,045,056 | ---- | C] (NEXIQ Technologies) -- C:\WINDOWS\System32\Dx121032.dll
[2012.01.29 17:28:57 | 000,036,864 | ---- | C] (NEXIQ Technologies, INC.) -- C:\WINDOWS\System32\NXEDL32.dll
[2012.01.29 17:28:57 | 000,032,768 | ---- | C] (Micro Processor Systems, Inc.) -- C:\WINDOWS\System32\UnInstallNT.exe
[2012.01.29 17:28:57 | 000,020,480 | ---- | C] (Micro Processor Systems, Inc.) -- C:\WINDOWS\System32\mpsicnct.exe
[2012.01.29 17:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Service ADVISOR
[2012.01.29 17:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Service ADVISOR
[2012.01.29 17:26:50 | 000,616,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCTL32.ocx
[2012.01.29 17:26:50 | 000,416,584 | ---- | C] (Microsoft Corporation ) -- C:\WINDOWS\System32\COMCT332.ocx
[2012.01.29 17:26:50 | 000,171,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCT232.ocx
[2012.01.29 17:26:50 | 000,110,592 | ---- | C] (Common Controls Replacement Project (CCRP)) -- C:\WINDOWS\System32\ccrpbds6.dll
[2012.01.29 17:26:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\John Deere
[2012.01.29 17:26:49 | 000,000,000 | ---D | C] -- C:\Program Files\ECULP
[2012.01.29 17:25:27 | 000,323,584 | ---- | C] (John Deere Power Systems) -- C:\WINDOWS\System32\JDPayloadProcessor.dll
[2012.01.29 17:25:27 | 000,032,839 | ---- | C] (John Deere Power Systems) -- C:\WINDOWS\System32\JDTrimHTML.dll
[2012.01.29 17:24:28 | 000,393,216 | ---- | C] (John Deere and Company) -- C:\WINDOWS\System32\JDNetComm.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] (Pyramid Solutions, Inc.) -- C:\WINDOWS\System32\JDDiagnosticLib.dll
[2012.01.29 17:22:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallShield
[2012.01.29 17:22:26 | 000,073,728 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\System32\ISUSPM.cpl
[2012.01.29 17:21:25 | 000,106,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscrpt2.ocx
[2012.01.29 17:21:25 | 000,103,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCOMM32.OCX
[2012.01.29 17:21:25 | 000,036,864 | ---- | C] (Pyramid Solutions, Inc.) -- C:\WINDOWS\System32\JDMSComm.dll
[2012.01.29 17:21:24 | 000,982,528 | ---- | C] (Sauer-Danfoss) -- C:\WINDOWS\System32\Plus1Diag.dll
[2012.01.29 17:21:24 | 000,299,106 | ---- | C] (John Deere DPSG) -- C:\WINDOWS\System32\JDPayloadReader.dll
[2012.01.29 17:21:24 | 000,208,896 | ---- | C] (John Deere and Company) -- C:\WINDOWS\System32\JDAgLoader.dll
[2012.01.29 17:21:24 | 000,090,175 | ---- | C] (John Deere Power Systems) -- C:\WINDOWS\System32\jdlm.dll
[2012.01.29 17:21:24 | 000,081,920 | ---- | C] (Sauer-Danfoss) -- C:\WINDOWS\System32\RP1210.dll
[2012.01.29 17:21:24 | 000,032,768 | ---- | C] (Pyramid Solutions) -- C:\WINDOWS\System32\JDNetCommBuilder.dll
[2012.01.29 17:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\John Deere
[2012.01.29 17:15:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft SQL Server 2005
[2012.01.29 17:11:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2012.01.29 15:36:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\HD Tune
[2012.01.29 15:36:39 | 000,000,000 | ---D | C] -- C:\Program Files\HD Tune
[2012.01.29 13:36:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2012.01.27 20:26:11 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp90.dll
[2012.01.27 20:26:10 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr90.dll
[2012.01.27 20:26:08 | 000,034,048 | ---- | C] (MicroWorld Technologies Inc.) -- C:\WINDOWS\System32\eEmpty.exe
[2012.01.26 18:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Identities
[2012.01.24 10:26:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\wefs
[2012.01.23 20:04:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Registry Mechanic
[2012.01.23 19:52:15 | 001,101,824 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox210.ocx
[2012.01.23 19:52:15 | 000,212,992 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBoxVB12.ocx
[2012.01.23 19:52:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PC Tools Registry Mechanic
[2012.01.23 19:52:14 | 000,880,640 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox10.ocx
[2012.01.23 19:52:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2012.01.23 19:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Registry Mechanic
[2012.01.23 19:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Product_RM
[2012.01.23 19:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PC Tools
[2012.01.23 16:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\ABBYY
[2012.01.23 16:39:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ABBYY FineReader 9.0
[2012.01.23 16:38:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY
[2012.01.23 16:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 9.0
[2012.01.23 16:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\ABBYY
[2012.01.23 16:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ABBYY
[2012.01.21 17:26:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.01.21 17:24:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\FFOutput
[2012.01.19 19:29:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2012.01.18 16:38:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
[2012.01.18 16:38:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012.01.15 17:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Dokumenty\setup_ais
[2012.01.15 12:18:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\VDLL.DLL
[2012.01.15 12:18:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\RUNDL132.EXE
[2012.01.15 12:18:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\logo_1.exe
[2012.01.15 11:24:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\FTWeak
[2012.01.15 11:24:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\FCleaner
[2012.01.15 11:24:27 | 000,000,000 | ---D | C] -- C:\Program Files\FCleaner
[2012.01.15 11:22:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\FTweak
[2012.01.13 18:44:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PDFCreator
[2012.01.13 18:44:37 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2012.01.13 18:44:36 | 000,660,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mscomct2.ocx
[2012.01.13 18:44:35 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMPIDE.DLL
[2012.01.13 18:44:35 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2012.01.13 18:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\WordToPDF
[2012.01.13 18:08:34 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2012.01.10 19:28:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\SKIDROW
[2012.01.10 19:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Trine2
[2012.01.10 19:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Frozenbyte
[2012.01.10 19:24:42 | 000,000,000 | ---D | C] -- C:\Program Files\Frozenbyte
[2012.01.10 17:27:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\ICQ
[2012.01.10 17:21:50 | 000,239,168 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012.01.10 17:16:59 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012.01.10 17:16:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2012.01.09 16:50:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Nabídka Start\Programy\MiraScan V6.1 (5150C)
[2012.01.09 16:50:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Mira6
[2012.01.09 16:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\ScanDrv6
[2012.01.08 18:15:36 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2012.01.08 18:15:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
[2012.01.08 18:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012.01.08 18:14:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2012.01.08 18:14:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012.01.08 16:48:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Data aplikací\Ubisoft
[2012.01.08 16:46:47 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2012.01.08 16:46:47 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2012.01.08 16:46:46 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2012.01.08 16:46:46 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2012.01.08 16:46:45 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2012.01.08 16:46:45 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2012.01.08 16:46:45 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2012.01.08 16:46:44 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2012.01.08 16:46:44 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2012.01.08 16:46:44 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2012.01.08 16:46:43 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2012.01.08 16:46:43 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2012.01.08 16:43:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
[2012.01.08 16:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Nabídka Start\Programy\CZShare
[2012.01.08 16:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012.01.08 16:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Deployment
[2012.01.07 12:12:56 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2012.02.04 10:57:42 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uživatel\Plocha\OTL.exe
[2012.02.04 10:32:30 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.02.04 10:32:28 | 000,088,576 | ---- | M] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.04 10:31:37 | 524,302,336 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\Top.Gear.S1qwe6E03.2011.DVB-T.XviD.CZ-SX.avi
[2012.02.04 09:14:08 | 000,001,643 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\CrystalDiskInfo.lnk
[2012.02.04 09:03:57 | 000,519,782 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.04 09:03:57 | 000,514,942 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.04 09:03:57 | 000,105,172 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.04 09:03:57 | 000,093,390 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.04 09:00:16 | 000,013,002 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.02.04 08:58:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.03 19:00:06 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2012.02.03 10:36:48 | 000,179,448 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.02.02 16:49:51 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.02.02 16:42:44 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.02.02 16:34:18 | 000,396,041 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\MiniToolBox.exe
[2012.02.02 14:45:23 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.02 14:45:06 | 009,502,424 | ---- | M] (Malwarebytes Corporation ) -- C:\mbam-setup-1.60.1.1000.exe
[2012.02.01 17:39:56 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\uživatel\netstat
[2012.02.01 17:26:46 | 000,979,351 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\pinfect.zip
[2012.02.01 17:00:42 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\uživatel\Dokumenty\HiJackThis.exe
[2012.02.01 16:13:26 | 000,043,954 | ---- | M] () -- C:\duplikaty-skot-2012.pdf
[2012.02.01 14:39:18 | 000,804,251 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\4.JPG
[2012.02.01 14:38:28 | 001,056,569 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\3.JPG
[2012.02.01 14:37:46 | 001,094,607 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\2.JPG
[2012.02.01 14:36:39 | 001,294,533 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\1.JPG
[2012.02.01 10:20:46 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2012.02.01 10:20:46 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2012.01.30 14:38:50 | 000,000,428 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\spider.sav
[2012.01.29 17:29:12 | 000,000,583 | ---- | M] () -- C:\WINDOWS\xVDSMgr.ini
[2012.01.29 17:28:59 | 000,000,286 | ---- | M] () -- C:\WINDOWS\BTConnectUtility.ini
[2012.01.29 17:28:59 | 000,000,054 | ---- | M] () -- C:\WINDOWS\RP121032.INI
[2012.01.29 17:28:57 | 000,007,851 | ---- | M] () -- C:\WINDOWS\NXEDL32.ini
[2012.01.29 17:28:56 | 000,001,198 | ---- | M] () -- C:\WINDOWS\xVDSClientCntrl.ini
[2012.01.29 17:27:01 | 000,014,254 | ---- | M] () -- C:\WINDOWS\unins001.dat
[2012.01.29 17:26:59 | 000,697,444 | ---- | M] () -- C:\WINDOWS\unins001.exe
[2012.01.29 17:26:54 | 000,000,617 | ---- | M] () -- C:\WINDOWS\ECULP.ini
[2012.01.29 17:26:52 | 000,000,191 | ---- | M] () -- C:\WINDOWS\FaultMon.INI
[2012.01.29 17:26:28 | 000,007,036 | ---- | M] () -- C:\WINDOWS\unins000.dat
[2012.01.29 17:26:27 | 000,693,347 | ---- | M] () -- C:\WINDOWS\unins000.exe
[2012.01.27 20:26:10 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp90.dll
[2012.01.27 20:26:09 | 000,655,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr90.dll
[2012.01.27 20:26:07 | 000,034,048 | ---- | M] (MicroWorld Technologies Inc.) -- C:\WINDOWS\System32\eEmpty.exe
[2012.01.27 20:25:23 | 141,333,296 | ---- | M] () -- C:\mwav.exe
[2012.01.27 18:34:38 | 005,731,030 | ---- | M] () -- C:\WINDOWS\REGBK01.ZIP
[2012.01.23 19:52:15 | 000,000,869 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PC Tools Registry Mechanic.lnk
[2012.01.23 16:05:46 | 000,029,105 | ---- | M] () -- C:\arwrwerwrer.pdf
[2012.01.23 16:03:27 | 000,033,184 | ---- | M] () -- C:\gsgsdggsd.pdf
[2012.01.23 14:32:53 | 000,032,029 | ---- | M] () -- C:\pro f1.pdf
[2012.01.22 20:17:54 | 000,754,152 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\priznani_k_dani_z_pridane_hodnoty_17.pdf
[2012.01.21 17:27:19 | 000,000,111 | ---- | M] () -- C:\WINDOWS\posta2.ini
[2012.01.19 19:40:59 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012.01.19 17:16:29 | 942,288,896 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\green lantern cesky dabing cz.avi
[2012.01.18 20:26:11 | 000,002,437 | ---- | M] () -- C:\podpis švecová.pdf
[2012.01.18 18:51:52 | 000,002,368 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\Bucky Larson Zrozen byt hvezdou.avi
[2012.01.17 18:30:04 | 860,685,134 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\The Three Wise Men Christmas Special DVB-TRip COOL CZ 13.1.2012.avi
[2012.01.16 11:47:20 | 000,002,552 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.01.15 17:46:44 | 000,179,396 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\cc_20120115_174639.reg
[2012.01.15 12:29:30 | 005,676,757 | ---- | M] () -- C:\WINDOWS\REGBK00.ZIP
[2012.01.15 12:29:30 | 000,000,055 | ---- | M] () -- C:\WINDOWS\WinInit.Ini
[2012.01.15 11:30:15 | 000,009,232 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\Czech.lng
[2012.01.15 11:24:28 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\FCleaner.lnk
[2012.01.13 19:03:44 | 000,054,486 | ---- | M] () -- C:\gsdgsdgfsgd.pdf
[2012.01.13 18:44:40 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PDFCreator.lnk
[2012.01.13 18:19:02 | 000,000,116 | ---- | M] () -- C:\Documents and Settings\uživatel\default.pls
[2012.01.10 19:25:44 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Trine 2.lnk
[2012.01.10 17:21:50 | 000,239,168 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2012.01.09 16:50:37 | 000,001,571 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\MiraScan 6.1 (5150C).lnk
[2012.01.08 18:15:41 | 000,000,390 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012.01.08 16:39:29 | 000,000,318 | ---- | M] () -- C:\Documents and Settings\uživatel\Plocha\CZShare Manager.appref-ms
[2012.01.07 16:11:57 | 000,000,124 | ---- | M] () -- C:\Documents and Settings\uživatel\Dokumenty\ax_files.xml
[2012.01.07 12:12:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012.02.04 09:54:14 | 524,302,336 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\Top.Gear.S1qwe6E03.2011.DVB-T.XviD.CZ-SX.avi
[2012.02.04 09:14:08 | 000,001,643 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\CrystalDiskInfo.lnk
[2012.02.02 16:42:44 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012.02.02 16:42:43 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2012.02.02 16:36:57 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.02 16:34:18 | 000,396,041 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\MiniToolBox.exe
[2012.02.02 14:45:23 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.01 17:39:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\uživatel\netstat
[2012.02.01 16:13:18 | 000,043,954 | ---- | C] () -- C:\duplikaty-skot-2012.pdf
[2012.02.01 14:39:18 | 000,804,251 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\4.JPG
[2012.02.01 14:38:28 | 001,056,569 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\3.JPG
[2012.02.01 14:37:45 | 001,094,607 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\2.JPG
[2012.02.01 14:36:39 | 001,294,533 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\1.JPG
[2012.01.31 10:48:51 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2012.01.31 10:48:51 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2012.01.29 17:28:59 | 000,000,054 | ---- | C] () -- C:\WINDOWS\RP121032.INI
[2012.01.29 17:28:57 | 000,011,920 | ---- | C] () -- C:\WINDOWS\System32\jdusb.hex
[2012.01.29 17:28:57 | 000,008,937 | ---- | C] () -- C:\WINDOWS\dx121032.ini
[2012.01.29 17:28:57 | 000,007,851 | ---- | C] () -- C:\WINDOWS\NXEDL32.ini
[2012.01.29 17:28:57 | 000,005,382 | ---- | C] () -- C:\WINDOWS\System32\J1708CAN.tsk
[2012.01.29 17:28:57 | 000,005,160 | ---- | C] () -- C:\WINDOWS\System32\JD1708.TSK
[2012.01.29 17:28:57 | 000,004,854 | ---- | C] () -- C:\WINDOWS\System32\JDCCD.TSK
[2012.01.29 17:28:57 | 000,001,053 | ---- | C] () -- C:\WINDOWS\SerialDV.INI
[2012.01.29 17:28:57 | 000,000,286 | ---- | C] () -- C:\WINDOWS\BTConnectUtility.ini
[2012.01.29 17:28:48 | 000,001,336 | ---- | C] () -- C:\WINDOWS\ExceptionReport.ini
[2012.01.29 17:28:48 | 000,001,198 | ---- | C] () -- C:\WINDOWS\xVDSClientCntrl.ini
[2012.01.29 17:28:48 | 000,000,583 | ---- | C] () -- C:\WINDOWS\xVDSMgr.ini
[2012.01.29 17:27:05 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll
[2012.01.29 17:27:00 | 000,697,444 | ---- | C] () -- C:\WINDOWS\unins001.exe
[2012.01.29 17:27:00 | 000,014,254 | ---- | C] () -- C:\WINDOWS\unins001.dat
[2012.01.29 17:26:54 | 000,000,617 | ---- | C] () -- C:\WINDOWS\ECULP.ini
[2012.01.29 17:26:52 | 000,000,191 | ---- | C] () -- C:\WINDOWS\FaultMon.INI
[2012.01.29 17:26:50 | 000,569,439 | ---- | C] () -- C:\WINDOWS\System32\JDLegacyCfgReader.dll
[2012.01.29 17:25:27 | 000,001,399 | ---- | C] () -- C:\WINDOWS\PayloadProcessor.Ini
[2012.01.29 17:24:28 | 000,479,232 | ---- | C] () -- C:\WINDOWS\System32\JDMemAccessController.dll
[2012.01.29 17:24:28 | 000,323,657 | ---- | C] () -- C:\WINDOWS\System32\JDComm.dll
[2012.01.29 17:24:28 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\JDPFController.dll
[2012.01.29 17:24:28 | 000,270,336 | ---- | C] () -- C:\WINDOWS\System32\JDPhoenixController.dll
[2012.01.29 17:24:28 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\JDEnhancedSecurity.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\PWDJDOW.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\PWDJDCFD.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\PWDHarvestorWorks.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\JDSupplierSecurity.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\JDSimpleSecurity.dll
[2012.01.29 17:24:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\JDSimple2Security.dll
[2012.01.29 17:24:28 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\PWDPhoenix.dll
[2012.01.29 17:24:28 | 000,011,549 | ---- | C] () -- C:\WINDOWS\System32\JDDiagnostic.wsc
[2012.01.29 17:24:27 | 000,693,347 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2012.01.29 17:24:27 | 000,007,036 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2012.01.29 17:24:27 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\jdlm.sig
[2012.01.29 17:23:26 | 000,221,255 | ---- | C] () -- C:\WINDOWS\System32\JDLog.dll
[2012.01.29 17:23:26 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\JDNetCommSerial.dll
[2012.01.29 17:23:26 | 000,168,011 | ---- | C] () -- C:\WINDOWS\System32\JDError.dll
[2012.01.29 17:21:25 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\VersionInfo.dll
[2012.01.29 17:21:25 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\JDBinaryRecords.dll
[2012.01.29 17:21:25 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\JDArrayUtils.dll
[2012.01.29 17:21:24 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\JDHarvesterController.dll
[2012.01.29 17:21:24 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\JDPlus1Controller.dll
[2012.01.27 20:19:21 | 141,333,296 | ---- | C] () -- C:\mwav.exe
[2012.01.27 18:33:54 | 005,731,030 | ---- | C] () -- C:\WINDOWS\REGBK01.ZIP
[2012.01.23 19:53:23 | 000,000,280 | ---- | C] () -- C:\WINDOWS\tasks\RMSchedule.job
[2012.01.23 19:52:15 | 000,000,869 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PC Tools Registry Mechanic.lnk
[2012.01.23 19:52:14 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2012.01.23 16:05:45 | 000,029,105 | ---- | C] () -- C:\arwrwerwrer.pdf
[2012.01.23 16:03:26 | 000,033,184 | ---- | C] () -- C:\gsgsdggsd.pdf
[2012.01.23 14:32:52 | 000,032,029 | ---- | C] () -- C:\pro f1.pdf
[2012.01.22 20:17:54 | 000,754,152 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\priznani_k_dani_z_pridane_hodnoty_17.pdf
[2012.01.21 13:16:03 | 000,000,428 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\spider.sav
[2012.01.19 16:14:20 | 942,288,896 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\green lantern cesky dabing cz.avi
[2012.01.18 20:26:10 | 000,002,437 | ---- | C] () -- C:\podpis švecová.pdf
[2012.01.18 18:51:38 | 000,002,368 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\Bucky Larson Zrozen byt hvezdou.avi
[2012.01.17 17:47:49 | 860,685,134 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\The Three Wise Men Christmas Special DVB-TRip COOL CZ 13.1.2012.avi
[2012.01.15 17:46:42 | 000,179,396 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\cc_20120115_174639.reg
[2012.01.15 12:29:30 | 000,000,055 | ---- | C] () -- C:\WINDOWS\WinInit.Ini
[2012.01.15 12:28:58 | 005,676,757 | ---- | C] () -- C:\WINDOWS\REGBK00.ZIP
[2012.01.15 11:50:45 | 000,979,351 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\pinfect.zip
[2012.01.15 11:30:15 | 000,009,232 | ---- | C] () -- C:\Documents and Settings\uživatel\Dokumenty\Czech.lng
[2012.01.15 11:24:28 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\FCleaner.lnk
[2012.01.13 18:50:52 | 000,054,486 | ---- | C] () -- C:\gsdgsdgfsgd.pdf
[2012.01.13 18:44:40 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PDFCreator.lnk
[2012.01.13 18:44:36 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2012.01.10 19:25:44 | 000,001,733 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Trine 2.lnk
[2012.01.09 16:50:37 | 000,001,571 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\MiraScan 6.1 (5150C).lnk
[2012.01.08 18:15:41 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012.01.08 16:38:26 | 000,000,318 | ---- | C] () -- C:\Documents and Settings\uživatel\Plocha\CZShare Manager.appref-ms
[2012.01.07 12:12:57 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2011.12.31 15:52:34 | 000,000,111 | ---- | C] () -- C:\WINDOWS\posta2.ini
[2011.12.31 10:00:05 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.12.31 10:00:00 | 000,088,576 | ---- | C] () -- C:\Documents and Settings\uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.12.29 12:29:12 | 000,004,952 | ---- | C] () -- C:\WINDOWS\BOOTFONT.BIN
[2011.12.28 16:17:24 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS53.DLL
[2011.12.28 12:04:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2011.12.28 11:28:42 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2011.12.28 11:28:34 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2011.12.28 11:28:33 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2011.12.28 11:28:32 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2011.12.28 11:28:32 | 000,243,168 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2011.12.28 11:23:06 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.12.28 11:12:22 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.12.28 11:11:04 | 000,179,448 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.12.28 10:25:24 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.12.28 10:21:49 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.11.09 22:39:44 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2011.11.09 22:39:32 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2004.08.02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001.10.25 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 13:00:00 | 000,519,782 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 13:00:00 | 000,514,942 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 13:00:00 | 000,105,172 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 13:00:00 | 000,093,390 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001.10.25 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[color=#E56717]========== LOP Check ==========[/color]

[2011.12.29 11:30:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2011.12.28 12:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.12.28 16:17:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2011.12.31 20:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.01.15 11:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FTWeak
[2012.01.29 17:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Service ADVISOR
[2012.02.04 09:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.02.01 11:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\DAEMON Tools Lite
[2012.01.15 11:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\FTweak
[2012.01.10 17:40:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\ICQ
[2012.02.04 09:14:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\OpenCandy
[2012.01.03 18:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Opera
[2012.01.23 19:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Product_RM
[2012.01.23 20:04:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Registry Mechanic
[2012.01.10 19:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Trine2
[2012.01.08 16:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\Ubisoft
[2012.01.29 13:36:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uživatel\Data aplikací\VitySoft
[2012.02.03 19:00:06 | 000,000,280 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

[color=#E56717]========== Purity Check ==========[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

< End of report >

mafian · Příspěvekod **mafian** » 04 úno 2012 11:06

OTL Extras logfile created on: 4.2.2012 11:00:40 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\uživatel\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,63 Gb Available Physical Memory | 81,01% Memory free
5,09 Gb Paging File | 4,63 Gb Available in Paging File | 91,03% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 68,36 Gb Total Space | 48,28 Gb Free Space | 70,62% Space Free | Partition Type: NTFS
Drive D: | 59,63 Gb Total Space | 50,67 Gb Free Space | 84,98% Space Free | Partition Type: NTFS
Drive F: | 337,77 Gb Total Space | 89,97 Gb Free Space | 26,64% Space Free | Partition Type: NTFS
Drive G: | 127,99 Gb Total Space | 45,12 Gb Free Space | 35,25% Space Free | Partition Type: NTFS
Drive I: | 68,36 Gb Total Space | 40,20 Gb Free Space | 58,81% Space Free | Partition Type: NTFS
Drive K: | 171,77 Gb Total Space | 41,45 Gb Free Space | 24,13% Space Free | Partition Type: NTFS
Drive L: | 97,65 Gb Total Space | 47,98 Gb Free Space | 49,13% Space Free | Partition Type: NTFS

Computer Name: ADMIN | User Name: uživatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 4

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"C:\Program Files\Java\jre7\bin\java.exe" = C:\Program Files\Java\jre7\bin\java.exe:*:Disabled:Java(TM) Platform SE binary -- (Oracle Corporation)

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{045ECA18-1DB2-64C8-2279-F73A8DCE3B5E}" = CCC Help Hungarian
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{06E34C00-0446-4176-81C8-A5DAFE53CA36}" = Acronis Disk Director
"{0B1F138F-F085-22C6-6A38-3DBFB785B14B}" = Catalyst Control Center Graphics Full New
"{190601AF-7BE4-046E-CEBF-14EE74434250}" = AMD Catalyst Install Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2481EC4A-B95E-6B1F-9240-EC3C7A72CF6F}" = Skins
"{26A24AE4-039D-4CA4-87B4-2F83217000FF}" = Java(TM) 7 Update 2
"{26C3A7CB-30DC-798B-21CC-63BDF56F0657}" = CCC Help Chinese Traditional
"{28240E4E-E367-7844-846E-4E8427B53211}" = CCC Help Spanish
"{2A1BC0F0-110B-EDD7-4C3D-0864DEF60677}" = CCC Help Turkish
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition
"{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}" = Catalyst Control Center - Branding
"{30FF885C-FDFA-4C9A-9492-486E70DCE8AE}" = JD Common Loader
"{350C97C4-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3828EC4B-D4B9-A742-4D81-9C0A3C72DF8A}" = CCC Help English
"{384D85DA-E2A5-4A47-8597-0C776A562AC2}" = JD NetComm Serial
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C637334-FE5D-E488-4F11-BF9EFD6ADAA9}" = CCC Help English
"{3C9772FC-69C6-4856-B1CA-22E0DA02FFAF}" = MiraScan 6.1(5150C)
"{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}" = ATI HYDRAVISION
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FAF52DB-8007-48D1-98E0-A388B92057CC}" = VMR Client Install
"{3FE7D2BF-DB37-429A-B47E-5DE073404A42}" = Seemage Players
"{41BCC278-007E-993C-61DC-25B86926F45E}" = CCC Help Finnish
"{433AA25B-442D-D97B-6492-71D2747355DB}" = ccc-utility
"{455C773B-A2CC-44A1-812E-A6C84EF78AB2}" = JD NetComm V2
"{4644EC10-EFE8-0235-41CC-C48491CF83E3}" = CCC Help Greek
"{4655D394-1F7C-F51A-70BC-0561FF71E9D7}" = CCC Help Norwegian
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BE9562E-A31B-A5FF-5DF9-A69F9CB74746}" = CCC Help Japanese
"{510414A2-0F14-4DB8-BDF2-C98A6E1D1367}" = Connectivity Abstraction Layer
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5D1EA3CE-3356-2EB7-A5C7-2F2608BDEACB}" = CCC Help German
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5DE5512A-6F6F-43FB-82C6-9A523E3AC771}" = NEXIQ Readings
"{61BCD850-1A0F-E253-06FF-2A9778945765}" = ccc-core-static
"{6264F0C5-3D33-A669-62ED-AD8E325723BB}" = Catalyst Control Center Core Implementation
"{7AB96F30-68CC-1F9E-A7C4-7A80FF06EFAC}" = CCC Help Dutch
"{81A917A1-DBA3-3639-53DA-B6E833D41A57}" = ccc-utility
"{8241B54B-EE5B-468E-A2F9-7B210D5BDFCB}" = JD Field General
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83BF9176-882C-3AE7-3E1F-3F7E62EFD459}" = ccc-core-preinstall
"{856499F9-51B6-C958-BADC-0B2F930ED59E}" = CCC Help Swedish
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90120405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{91C0B95B-B83A-4828-A775-BBE2DD421029}" = Nero 7 Ultra Edition
"{932B8CC5-06AB-375C-42B9-B0CB58BC7019}" = Catalyst Control Center HydraVision Full
"{98282981-0E26-50CD-6D7F-F0E3E3DF6486}" = Catalyst Control Center Graphics Full Existing
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0A087E5-149E-EC75-F45D-3A3C04344B4A}" = Catalyst Control Center Graphics Previews Common
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A8248F67-8160-7AAB-371F-03221340D539}" = CCC Help Italian
"{AB0BFB0B-116C-54DA-1B41-CBBE94B43007}" = CCC Help Czech
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Czech
"{B0043B14-E6FE-67F1-54A8-DA2C8DA5B1FA}" = CCC Help Portuguese
"{B17C8039-DDDE-E6DE-3632-40186451799C}" = CCC Help Polish
"{B31FFE22-A9BB-CB94-F91B-E678B8645D49}" = Catalyst Control Center Localization All
"{B3736663-7797-9F1E-77E8-6D78021B2921}" = CCC Help Danish
"{B57890F1-05B2-265D-62A6-C4B8EF212786}" = CCC Help French
"{B80964E3-9445-46C3-3A2F-6556B595CBAC}" = Catalyst Control Center Graphics Light
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4842EAA-7ACA-3466-9DC0-D0BF174B9F6E}" = CCC Help Chinese Standard
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CC67DD84-77C6-C9F8-FA03-953F1C1C92A9}" = Catalyst Control Center InstallProxy
"{CE09BA21-399C-FCE7-E2E5-C9BCF14D61F3}" = CCC Help Russian
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D410670C-B1B7-E7A4-0CD1-5C18669D35E5}" = Catalyst Control Center Graphics Previews Common
"{E5C8C4ED-A76A-49F3-BDB8-56DEEE92F19B}" = 602XML Filler
"{E5DD5532-5CE8-8A47-C05F-DD8EC0ED3557}" = CCC Help Korean
"{E8AEA11B-E60A-455E-B008-E4E763604612}" = Browser Configuration Utility
"{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}" = Microsoft SQL Server VSS Writer
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5A1FC59-3573-47D8-BEF2-A89F74C85A22}" = JD Payload Processor
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{F937494E-4340-FFB4-6911-54E9FB4B5998}" = CCC Help Thai
"{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}" = Microsoft SQL Server Native Client
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Internet Security
"CANONBJ_Deinstall_CNMCP53.DLL" = Canon i350
"CCleaner" = CCleaner
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-11-11
"CrystalDiskInfo_is1" = CrystalDiskInfo 4.2.0a
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"ECULP4_is1" = ECULP 4.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FCleaner_is1" = FCleaner 1.3.1.621
"GOM Player" = GOM Player
"HD Tune_is1" = HD Tune 2.55
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"JDActiveX3_is1" = JDActiveX3 3.0.1.12
"JDLM_is1" = JDLM 2.1
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.60.1.1000
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"nLite_is1" = nLite 1.4.8
"Opera 11.61.1250" = Opera 11.61
"Registry Mechanic_is1" = PC Tools Registry Mechanic 11.0
"Traktor 2_is1" = Traktor 2
"Trine 2_is1" = Trine 2
"V3.2_is1" = File Scavenger 3.2
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.01 (32-bit)

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"7f4182272b52fd8f" = CZShare Manager

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 15.1.2012 10:57:53 | Computer Name = ADMIN | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace AvastUI.exe, verze 6.0.1367.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 15.1.2012 10:57:57 | Computer Name = ADMIN | Source = Application Hang | ID = 1001
Description = Chybný blok -1579213943

Error - 17.1.2012 9:25:36 | Computer Name = ADMIN | Source = Application Error | ID = 1000
Description = Chybující aplikace bubbleball.exe, verze 0.0.0.0, chybující modul
bubbleball.exe, verze 0.0.0.0, adresa chyby 0x0000914a.

Error - 23.1.2012 7:42:11 | Computer Name = ADMIN | Source = Application Error | ID = 1000
Description = Chybující aplikace bubbleball.exe, verze 0.0.0.0, chybující modul
bubbleball.exe, verze 0.0.0.0, adresa chyby 0x0000914a.

Error - 24.1.2012 8:39:37 | Computer Name = ADMIN | Source = .NET Runtime 4.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 czsharemanager.exe, P2 0.0.1.30, P3 4e70be6a,
P4 system.windows.forms, P5 4.0.0.0, P6 4da404ee, P7 152f, P8 17, P9 system.invalidoperationexception,
P10 NIL.

Error - 24.1.2012 8:39:39 | Computer Name = ADMIN | Source = .NET Runtime | ID = 1026
Description = Application: CZShareManager.exe Framework Version: v4.0.30319 Description:
The process was terminated due to an unhandled exception. Exception Info: System.InvalidOperationException
Stack:

at System.Windows.Forms.Control.MarshaledInvoke(System.Windows.Forms.Control,
System.Delegate, System.Object[], Boolean) at System.Windows.Forms.Control.Invoke(System.Delegate,
System.Object[]) at System.Windows.Forms.Control.Invoke(System.Delegate) at
TranferManager.NewVersionDownload.OnCheckForUpdateCompleted(System.Object, System.Deployment.Application.CheckForUpdateCompletedEventArgs)

at System.Deployment.Application.ApplicationDeployment.CheckForUpdateBindCompletedEventHandler(System.Object,
System.Deployment.Application.BindCompletedEventArgs) at System.Deployment.Application.DeploymentManager.BindAsyncCompleted(System.Object)

at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)

at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback,
System.Object, Boolean) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()

at System.Threading.ThreadPoolWorkQueue.Dispatch() at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error - 24.1.2012 9:17:49 | Computer Name = ADMIN | Source = Application Error | ID = 1000
Description = Chybující aplikace bubbleball.exe, verze 0.0.0.0, chybující modul
bubbleball.exe, verze 0.0.0.0, adresa chyby 0x0000914a.

Error - 26.1.2012 10:59:59 | Computer Name = ADMIN | Source = .NET Runtime 4.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 czsharemanager.exe, P2 0.0.1.30, P3 4e70be6a,
P4 system.windows.forms, P5 4.0.0.0, P6 4da404ee, P7 152f, P8 17, P9 system.invalidoperationexception,
P10 NIL.

Error - 26.1.2012 11:00:12 | Computer Name = ADMIN | Source = .NET Runtime | ID = 1026
Description = Application: CZShareManager.exe Framework Version: v4.0.30319 Description:
The process was terminated due to an unhandled exception. Exception Info: System.InvalidOperationException
Stack:

at System.Windows.Forms.Control.MarshaledInvoke(System.Windows.Forms.Control,
System.Delegate, System.Object[], Boolean) at System.Windows.Forms.Control.Invoke(System.Delegate,
System.Object[]) at System.Windows.Forms.Control.Invoke(System.Delegate) at
TranferManager.NewVersionDownload.OnCheckForUpdateCompleted(System.Object, System.Deployment.Application.CheckForUpdateCompletedEventArgs)

at System.Deployment.Application.ApplicationDeployment.CheckForUpdateBindCompletedEventHandler(System.Object,
System.Deployment.Application.BindCompletedEventArgs) at System.Deployment.Application.DeploymentManager.BindAsyncCompleted(System.Object)

at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)

at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback,
System.Object, Boolean) at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()

at System.Threading.ThreadPoolWorkQueue.Dispatch() at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error - 29.1.2012 12:11:13 | Computer Name = ADMIN | Source = MsiInstaller | ID = 1013
Description = Produkt: Microsoft .NET Framework 2.0 - Setup cannot continue because
this version of the .NET Framework is incompatible with a previously installed
one. For more information, see http://support.microsoft.com/support/kb ... 2/5/00.asp

[ System Events ]
Error - 10.1.2012 2:45:02 | Computer Name = ADMIN | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.

Error - 10.1.2012 11:33:20 | Computer Name = ADMIN | Source = Service Control Manager | ID = 7034
Description = Služba Aktivátor Správce výběru OS Acronis byla neočekávaně ukončena.
Tento stav nastal již 1krát.

< End of report >

snad sem vložil vše děkuji za další rady.

Příspěvekod **jaro3** » 05 úno 2012 09:54

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (HidServ) -- File not found
O1 HOSTS File: ([2012.02.02 16:49:51 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInstrumentation = 1
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
[2012.02.04 09:03:57 | 000,519,782 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.04 09:03:57 | 000,514,942 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.04 09:03:57 | 000,105,172 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.04 09:03:57 | 000,093,390 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 13:00:00 | 000,519,782 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 13:00:00 | 000,514,942 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 13:00:00 | 000,105,172 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 13:00:00 | 000,093,390 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Qoobox
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
C:\WINDOWS\unins000.dat
C:\WINDOWS\unins000.exe
C:\WINDOWS\unins001.dat
C:\WINDOWS\unins001.exe
C:\WINDOWS\REGBK01.ZIP
C:\WINDOWS\tasks\RMSchedule.job
C:\WINDOWS\System32\CleanMFT32.exe
C:\WINDOWS\REGBK00.ZIP
C:\WINDOWS\ativpsrm.bin

:Reg
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\diagerr.xml
C:\WINDOWS\diagwrn.xml
C:\WINDOWS\xVDSMgr.ini
C:\WINDOWS\NXEDL32.ini
C:\WINDOWS\xVDSClientCntrl.ini
C:\WINDOWS\WinInit.Ini
C:\WINDOWS\System32\jdusb.hex
C:\WINDOWS\dx121032.ini
C:\WINDOWS\System32\JD1708.TSK
C:\WINDOWS\System32\JDCCD.TSK
C:\WINDOWS\SerialDV.INI
C:\WINDOWS\ExceptionReport.ini
C:\WINDOWS\xVDSClientCntrl.ini
C:\WINDOWS\System32\PWDJDOW.dll
C:\WINDOWS\System32\PWDJDCFD.dll
C:\WINDOWS\System32\PWDHarvestorWorks.dll
C:\WINDOWS\System32\JDSupplierSecurity.dll
C:\WINDOWS\System32\JDSimpleSecurity.dll
C:\WINDOWS\System32\JDSimple2Security.dll
C:\WINDOWS\System32\PWDPhoenix.dll
C:\WINDOWS\System32\JDDiagnostic.wsc
C:\WINDOWS\System32\JDArrayUtils.dll
C:\WINDOWS\System32\JDHarvesterController.dll
C:\WINDOWS\System32\JDPlus1Controller.dll

Co z toho znáš a stahoval si z důvěryhodných serverů , dávat na VT nemusíš

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

C:\arwrwerwrer.pdf
C:\gsgsdggsd.pdf
C:\pro f1.pdf
C:\gsdgsdgfsgd.pdf
Tyto soubory znáš , sám si vytvořil?

Tedy 7 disků(oddílů) a těch programů...

mafian · Příspěvekod **mafian** » 05 úno 2012 10:50

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service HidServ stopped successfully!
Service HidServ deleted successfully!
File File not found not found.
127.0.0.1 localhost removed from HOSTS file successfully
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoInstrumentation deleted successfully.
Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
C:\WINDOWS\system32\perfh009.dat moved successfully.
C:\WINDOWS\system32\perfh005.dat moved successfully.
C:\WINDOWS\system32\perfc005.dat moved successfully.
C:\WINDOWS\system32\perfc009.dat moved successfully.
File C:\WINDOWS\System32\perfh009.dat not found.
File C:\WINDOWS\System32\perfh005.dat not found.
C:\WINDOWS\system32\perfi009.dat moved successfully.
C:\WINDOWS\system32\perfi005.dat moved successfully.
File C:\WINDOWS\System32\perfc005.dat not found.
File C:\WINDOWS\System32\perfc009.dat not found.
C:\WINDOWS\system32\perfd005.dat moved successfully.
C:\WINDOWS\system32\perfd009.dat moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
========== FILES ==========
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\002361_.tmp moved successfully.
C:\WINDOWS\005271_.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET7.tmp moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\RMSchedule.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
Folder move failed. C:\Qoobox\BackEnv scheduled to be moved on reboot.
C:\Qoobox folder moved successfully.
File\Folder [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] not found.
File\Folder [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] not found.
C:\WINDOWS\unins000.dat moved successfully.
C:\WINDOWS\unins000.exe moved successfully.
C:\WINDOWS\unins001.dat moved successfully.
C:\WINDOWS\unins001.exe moved successfully.
C:\WINDOWS\REGBK01.ZIP moved successfully.
File\Folder C:\WINDOWS\tasks\RMSchedule.job not found.
C:\WINDOWS\System32\CleanMFT32.exe moved successfully.
C:\WINDOWS\REGBK00.ZIP moved successfully.
C:\WINDOWS\ativpsrm.bin moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: User

User: uživatel
->Temp folder emptied: 655849 bytes
->Temporary Internet Files folder emptied: 25764810 bytes
->Opera cache emptied: 1618159 bytes
->Flash cache emptied: 5495 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33251 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33728 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 27,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: User

User: uživatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 02052012_104532

Files\Folders moved on Reboot...
File\Folder C:\Qoobox\BackEnv not found!
File\Folder C:\WINDOWS\temp\_avast_\Webshlock.txt not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_e48.dat not found!

Registry entries deleted on Reboot...

mafian · Příspěvekod **mafian** » 05 úno 2012 11:43

Příspěvekod **jaro3** » 05 úno 2012 19:26

No smazat můžeš , pokud v tom umístění půjdou.

Spusť OTL a klikni na Vyčisti.

Jinak je to vše OK?

kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Re: kontrola hjt

Kdo je online