Proces "svchost.exe" vytěžuje PC Vyřešeno
Re: Proces "svchost.exe" vytěžuje PC Vyřešeno
Při vytížení CPU 50-80 % mám spuštěný akorát tak Avast, Unlocker a to je vše. Na konci se mi žádný textový soubor neobjevil, nebyly tam ani žádné instrukce, prostě jsem jen zaškrtnul, co jsi tu napsal, a dal Zahájit kontrolu. Na konci této kontroly se mi nic nezobrazilo.
Pokud máte rádi elektronickou hudbu a nemáte co na práci, můžete si poslechnout mou hudební tvorbu na SoundCloudu.
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43297
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Proces "svchost.exe" vytěžuje PC
Stáhni si OTH
na svojí plochu( pokud používáš Firefox , pravým klikni na OTH link a vyber uložit jako (Save as..).
Stáhni si OTL
na svojí plochu (pokud používáš Firefox , pravým klikni na OTL link a vyber uložit jako (Save as..).
Stáhni si soubor Scan.txt
na svojí plochu (pokud používáš Firefox , pravým klikni na OTL link a vyber uložit jako (Save as..).
Poklepej na soubor OTH na ploše , po spuštění programu klikni na Kill All Processes.Poté klikni na Start OTL .Poklepej Do prázdného okna pod Vlastní skenování /opravy ( Custom Scans box). Objeví se zpráva: Kliknutím na OK vyberete cestu k souboru, kliknutím na Zrušit zrušíte výběr.
Klikni na OK. Objeví se okno průzkumníku , zde klikneš na plochu a najdeš na ní soubor Scan.txt .Klikni na Otevřít.
Poté klikni na Rychle prohledat (Quick Scan). Neměň žádná jiná nastavení . Sken může trvat dlouho.
Kdy sken skončí , objeví se na ploše dva logy:
OTL.Txt a Extras.Txt , jsou uloženy ve stejném místě jako OTL.
Zkopíruj sem prosím celý obsah obou logů.
na svojí plochu( pokud používáš Firefox , pravým klikni na OTH link a vyber uložit jako (Save as..).
Stáhni si OTL
na svojí plochu (pokud používáš Firefox , pravým klikni na OTL link a vyber uložit jako (Save as..).
Stáhni si soubor Scan.txt
na svojí plochu (pokud používáš Firefox , pravým klikni na OTL link a vyber uložit jako (Save as..).
Poklepej na soubor OTH na ploše , po spuštění programu klikni na Kill All Processes.Poté klikni na Start OTL .Poklepej Do prázdného okna pod Vlastní skenování /opravy ( Custom Scans box). Objeví se zpráva: Kliknutím na OK vyberete cestu k souboru, kliknutím na Zrušit zrušíte výběr.
Klikni na OK. Objeví se okno průzkumníku , zde klikneš na plochu a najdeš na ní soubor Scan.txt .Klikni na Otevřít.
Poté klikni na Rychle prohledat (Quick Scan). Neměň žádná jiná nastavení . Sken může trvat dlouho.
Kdy sken skončí , objeví se na ploše dva logy:
OTL.Txt a Extras.Txt , jsou uloženy ve stejném místě jako OTL.
Zkopíruj sem prosím celý obsah obou logů.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Proces "svchost.exe" vytěžuje PC
OTL:
OTL logfile created on: 31.10.2010 8:23:52 - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\admin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 80,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 95,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,58 Gb Total Space | 4,32 Gb Free Space | 24,57% Space Free | Partition Type: NTFS
Drive D: | 19,68 Gb Total Space | 8,75 Gb Free Space | 44,45% Space Free | Partition Type: NTFS
Drive G: | 3,77 Gb Total Space | 2,17 Gb Free Space | 57,49% Space Free | Partition Type: FAT32
Computer Name: XXX-619471ABCC5 | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
PRC - [2010.10.31 08:18:11 | 000,258,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
PRC - [2010.09.07 16:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- D:\Avast!\AvastUI.exe
PRC - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- D:\Avast!\AvastSvc.exe
========== Modules (SafeList) ==========
MOD - [2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009.07.12 00:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2009.07.11 19:41:02 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll
MOD - [2008.04.14 07:51:46 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2008.04.13 22:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll
MOD - [2006.10.26 23:48:42 | 002,210,608 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll
MOD - [2006.10.26 23:48:34 | 000,955,680 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveUtil.dll
MOD - [2006.10.26 23:48:02 | 000,222,512 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveSystemServices.dll
MOD - [2006.10.26 23:47:40 | 000,022,808 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveNew.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010.09.22 12:38:14 | 002,950,744 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_062a651.dll -- (Akamai)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.06.14 14:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.03.29 07:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.08.27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Unknown | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2008.08.07 10:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2006.10.26 23:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Microsoft Office 2007\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
========== Driver Services (SafeList) ==========
DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_29.10.2010_20-05drv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena\plugins\UI\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | Unknown | Running] -- -- (11242572)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\11242571.sys -- (11242571)
DRV - [2010.09.22 12:43:17 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.09.07 15:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.09.07 15:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.09.07 15:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.09.07 15:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.09.07 15:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.09.07 15:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.05.22 17:32:32 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010.04.02 21:55:19 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010.04.02 21:55:19 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010.02.26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010.02.26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.02.26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010.02.26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009.11.25 23:06:34 | 000,034,384 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER)
DRV - [2009.09.19 05:29:36 | 004,477,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.08.19 13:05:56 | 000,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.05.14 14:49:26 | 000,055,768 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2009.05.14 14:49:26 | 000,033,096 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2009.05.14 14:49:22 | 000,133,000 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2009.05.14 14:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.05.30 13:13:26 | 000,027,704 | ---- | M] (Canopus Co,. Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cdrblock.sys -- (cdrblock)
DRV - [2008.04.14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2008.04.13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.03.18 15:09:16 | 000,350,720 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2008.02.11 15:55:04 | 000,586,240 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2008.01.23 09:19:44 | 000,501,560 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ACEDRV11.sys -- (acedrv11)
DRV - [2007.06.29 13:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.mvcr.cz:8080
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {000F1EA4-5E08-4564-A29B-29076F63A37A}:1.0.3.126
FF - prefs.js..extensions.enabledItems: runtime@panda3d.org:1.0.2
FF - prefs.js..extensions.enabledItems: yyginstantplay@yoyogames.com:1.1.0.24
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.732
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: D:\Nokia PC Suite\Nokia PC Suite 7\bkmrksync\ [2010.10.18 18:22:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.10.28 12:17:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.10.28 12:17:39 | 000,000,000 | ---D | M]
[2010.03.20 09:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Extensions
[2010.10.30 18:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions
[2010.08.21 21:30:12 | 000,000,000 | ---D | M] () -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}
[2010.10.21 17:18:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.15 18:50:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.07.01 14:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\eafo3fflauncher@ea.com
[2010.10.12 12:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\runtime@panda3d.org
[2010.10.18 15:03:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\yyginstantplay@yoyogames.com
[2010.10.30 18:19:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.04.18 06:16:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.17 06:24:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.07.17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.01.13 23:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
[2010.07.25 21:10:07 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.07.25 21:10:07 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.07.25 21:10:07 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.07.25 21:10:07 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.07.25 21:10:07 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2010.10.28 19:28:32 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [avast5] D:\Avast!\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk = C:\Documents and Settings\admin\Local Settings\temp\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.bat ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Microsoft Office 2007\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\admin\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Microsoft Office 2007\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 8840315531 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 8841698203 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office 2007\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Unable to start service SrService!
========== Files/Folders - Created Within 30 Days ==========
[2010.10.31 08:18:38 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
[2010.10.31 08:18:08 | 000,258,560 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
[2010.10.31 07:53:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010.10.30 08:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010.10.29 07:00:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\admin\Recent
[2010.10.28 22:09:14 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.10.28 21:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Plocha\Můj server
[2010.10.28 18:08:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Plocha\WoM Client
[2010.10.28 13:08:57 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.10.28 13:08:57 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.10.28 13:08:55 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.10.28 13:08:54 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.10.28 13:08:52 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.10.28 13:08:52 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.10.28 13:08:51 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.10.28 13:08:36 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010.10.28 13:08:35 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.10.28 13:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.10.28 11:54:15 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.10.28 10:31:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Malwarebytes
[2010.10.28 10:30:55 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.10.28 10:30:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.10.28 10:30:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.10.28 08:41:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\.minecraft
[2010.10.26 08:26:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\DiskSpaceFanPro
[2010.10.26 08:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\RegCure
[2010.10.25 15:25:16 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.10.25 13:59:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\.#
[2010.10.25 13:09:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.10.25 12:23:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\PackageAware
[2010.10.24 18:47:49 | 000,188,416 | ---- | C] (驊訊電子) -- C:\WINDOWS\System32\CMIMPEG2V.ax
[2010.10.24 18:47:47 | 000,352,256 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\ActiveSkin.ocx
[2010.10.24 18:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\C-Media Audio
[2010.10.24 09:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\ESET
[2010.10.24 09:19:20 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\ZombieDriver
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Wormux
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Need for Speed World
[2010.10.23 07:29:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.10.20 18:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\AaaaaRecklessDisregard
[2010.10.19 19:07:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.10.19 19:05:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.10.19 19:05:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.10.19 19:01:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010.10.19 18:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2010.10.19 18:49:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010.10.19 18:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft Help
[2010.10.19 18:46:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2010.10.18 18:30:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Nokia
[2010.10.18 18:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\PC Suite
[2010.10.18 18:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010.10.18 18:22:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010.10.18 18:22:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010.10.18 18:21:50 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010.10.18 18:21:48 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010.10.18 18:21:27 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010.10.18 18:21:02 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010.10.18 18:21:00 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010.10.18 18:20:58 | 000,022,528 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010.10.18 18:20:55 | 000,662,016 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010.10.18 18:20:55 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010.10.18 18:20:36 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010.10.18 18:17:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.10.18 15:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\YoYoGames
[2010.10.18 15:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dokumenty\YoYoGames
[2010.10.16 14:07:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dokumenty\AeriaGames
[2010.10.15 15:31:53 | 000,000,000 | ---D | C] -- C:\vcs5BGEffects
[2010.10.15 07:57:12 | 000,000,000 | ---D | C] -- C:\Program Files\Eagle Dynamics
[2010.10.13 17:14:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\MixMeister Technology
[2010.10.12 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Panda3D
[2010.10.12 11:20:09 | 000,000,000 | ---D | C] -- C:\Rbackup
[2010.10.09 16:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Downloaded Installations
[2010.10.09 16:01:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Chime
[2010.10.09 16:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft XNA
[2010.10.09 14:19:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Chart Controls
[2010.10.08 11:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2010.10.08 11:54:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Google
[2010.10.08 11:52:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Temp
[2010.10.08 11:52:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.10.07 08:50:54 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2010.10.07 08:50:53 | 000,444,952 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2010.10.02 09:21:45 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
[2010.10.31 08:18:11 | 000,258,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
[2010.10.31 07:54:10 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk
[2010.10.31 07:53:07 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.10.31 07:53:07 | 000,437,062 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.10.31 07:53:07 | 000,082,462 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.10.31 07:53:07 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.10.31 07:52:06 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.10.31 07:50:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.10.30 20:58:58 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.10.30 17:21:59 | 000,110,045 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\IMG_30102010_181958.png
[2010.10.30 17:12:20 | 003,336,278 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Nový objekt - WinRAR archiv.rar
[2010.10.29 06:54:21 | 000,000,460 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\CCleaner.lnk
[2010.10.28 19:40:01 | 000,002,311 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\HiJackThis.lnk
[2010.10.28 19:28:32 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.10.28 13:08:58 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.10.28 13:08:52 | 000,002,535 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.10.28 11:54:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2010.10.28 10:30:57 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.10.27 07:11:37 | 003,640,704 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.26 08:25:39 | 000,000,436 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Disk Space Fan Pro.lnk
[2010.10.26 08:07:18 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\RegCure.lnk
[2010.10.25 16:01:56 | 000,068,993 | ---- | M] () -- C:\WINDOWS\War3Unin.dat
[2010.10.25 15:39:43 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.10.25 15:39:43 | 000,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif
[2010.10.25 13:07:54 | 000,000,410 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\ERUNT.lnk
[2010.10.25 12:56:46 | 000,000,460 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\AML Free Registry Cleaner.lnk
[2010.10.24 18:47:50 | 000,000,144 | ---- | M] () -- C:\WINDOWS\CMISETUP.INI
[2010.10.22 19:14:05 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Eufloria.lnk
[2010.10.19 17:42:12 | 000,181,243 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\měsíc ve sluneční soustavě.psd
[2010.10.19 15:39:49 | 000,058,075 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\styly stinu.jpg
[2010.10.18 18:35:21 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2010.10.18 18:35:15 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2010.10.18 18:34:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010.10.18 18:34:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.18 18:22:47 | 000,001,564 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nokia PC Suite.lnk
[2010.10.18 14:52:19 | 000,000,029 | ---- | M] () -- C:\Documents and Settings\admin\Data aplikací\AVSMediaPlayer.m3u
[2010.10.16 16:39:14 | 012,300,298 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\01 - Spitfire.mp3
[2010.10.16 07:44:15 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.10.16 07:06:54 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.10.15 16:03:51 | 000,000,453 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\FL Studio 9.lnk
[2010.10.14 08:28:20 | 009,110,458 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\MixMeister Almost Everything Mix.mp3
[2010.10.13 17:14:14 | 000,000,475 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\MixMeister Fusion.lnk
[2010.10.12 12:19:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\Robota.INI
[2010.10.12 11:17:16 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\AK083E209605E394C.lie
[2010.10.10 12:10:21 | 000,000,342 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\next page.html
[2010.10.10 12:04:37 | 000,000,534 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\index.html
[2010.10.10 07:20:44 | 000,051,238 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Skype Marxadus.jpg
[2010.10.09 18:55:28 | 000,423,678 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\Jeepee.psd
[2010.10.09 17:44:03 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Audiosurf.lnk
[2010.10.09 15:37:57 | 000,000,499 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\RAR Password Recovery Magic.lnk
[2010.10.09 09:37:11 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\KitsuSaga.lnk
[2010.10.07 19:36:27 | 000,231,422 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\jumper.png
[2010.10.07 08:50:53 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.10.31 07:54:10 | 000,001,044 | ---- | C] () -- C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk
[2010.10.30 17:21:49 | 000,110,045 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\IMG_30102010_181958.png
[2010.10.30 17:12:02 | 003,336,278 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Nový objekt - WinRAR archiv.rar
[2010.10.29 06:54:21 | 000,000,460 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\CCleaner.lnk
[2010.10.28 13:08:58 | 000,000,487 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.10.28 11:54:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2010.10.28 11:54:17 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2010.10.28 10:30:57 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.10.28 08:06:54 | 000,002,311 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\HiJackThis.lnk
[2010.10.26 08:25:39 | 000,000,436 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Disk Space Fan Pro.lnk
[2010.10.26 08:07:18 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\RegCure.lnk
[2010.10.25 15:25:19 | 000,068,993 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010.10.25 15:25:17 | 000,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif
[2010.10.25 13:07:54 | 000,000,410 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\ERUNT.lnk
[2010.10.25 12:56:46 | 000,000,460 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\AML Free Registry Cleaner.lnk
[2010.10.24 18:47:50 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\CMIVCDNav.ax
[2010.10.24 18:47:49 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\CMIEffect.ax
[2010.10.24 18:47:49 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\CMIEchoFilter.ax
[2010.10.24 18:47:49 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\CMICDDAFilter.ax
[2010.10.22 19:14:05 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Eufloria.lnk
[2010.10.21 18:21:52 | 002,072,239 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Space_Water_Brushes_by_Kikariz.abr
[2010.10.21 18:18:54 | 000,093,458 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\signage1.abr
[2010.10.19 17:42:11 | 000,181,243 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\měsíc ve sluneční soustavě.psd
[2010.10.19 15:39:44 | 000,058,075 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\styly stinu.jpg
[2010.10.18 18:35:21 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2010.10.18 18:35:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2010.10.18 18:34:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010.10.18 18:34:08 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.18 18:22:47 | 000,001,564 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nokia PC Suite.lnk
[2010.10.16 16:43:11 | 012,300,298 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\01 - Spitfire.mp3
[2010.10.16 09:41:07 | 000,111,801 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\tapeta.jpg
[2010.10.16 07:06:53 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.10.15 16:03:51 | 000,000,453 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\FL Studio 9.lnk
[2010.10.14 08:20:54 | 009,110,458 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\MixMeister Almost Everything Mix.mp3
[2010.10.13 17:14:14 | 000,000,475 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\MixMeister Fusion.lnk
[2010.10.12 18:08:08 | 002,666,205 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Sum 41 - No Brains.mp3
[2010.10.12 11:17:16 | 000,000,042 | ---- | C] () -- C:\WINDOWS\System32\AK083E209605E394C.lie
[2010.10.12 10:15:16 | 000,000,652 | ---- | C] () -- C:\WINDOWS\FIX.reg
[2010.10.12 10:15:16 | 000,000,280 | ---- | C] () -- C:\WINDOWS\reset.reg
[2010.10.10 12:10:21 | 000,000,342 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\next page.html
[2010.10.10 12:04:37 | 000,000,534 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\index.html
[2010.10.10 07:20:40 | 000,051,238 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Skype Marxadus.jpg
[2010.10.09 18:55:28 | 000,423,678 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\Jeepee.psd
[2010.10.09 17:44:03 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Audiosurf.lnk
[2010.10.09 15:37:57 | 000,000,499 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\RAR Password Recovery Magic.lnk
[2010.10.09 09:37:10 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\KitsuSaga.lnk
[2010.10.07 19:36:25 | 000,231,422 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\jumper.png
[2010.09.19 10:55:16 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010.09.18 17:50:16 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\Adobe Formát PNG CS5 – předvolby
[2010.08.31 14:10:06 | 000,000,046 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DonationCoder_DrWindows_InstallInfo.dat
[2010.08.25 21:58:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\canopus.ini
[2010.08.25 21:14:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\pavedius5db.dll
[2010.08.25 21:14:06 | 000,030,720 | ---- | C] () -- C:\WINDOWS\System32\pavedius.dll
[2010.08.25 21:14:06 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\pavplal.dll
[2010.08.16 13:12:06 | 000,000,829 | ---- | C] () -- C:\WINDOWS\GTA-SA_Trn_Settings.ini
[2010.08.03 09:18:26 | 000,000,046 | ---- | C] () -- C:\WINDOWS\nfsc_patch.ini
[2010.07.18 22:45:08 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
[2010.07.14 08:16:23 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010.07.11 17:15:43 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll
[2010.07.11 17:12:21 | 000,006,211 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2010.07.10 17:24:27 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2010.07.09 20:04:40 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010.06.29 19:41:20 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2010.06.27 11:04:37 | 000,000,028 | ---- | C] () -- C:\WINDOWS\Robota.INI
[2010.05.24 14:48:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\leverage.drm.log
[2010.05.04 16:11:11 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010.04.12 14:09:17 | 000,230,752 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2010.04.10 08:33:57 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2010.04.07 13:06:31 | 000,015,872 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.02 21:55:19 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010.04.02 21:55:19 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010.03.31 17:08:03 | 000,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.03.31 17:08:02 | 000,139,152 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\PnkBstrK.sys
[2010.03.20 13:10:43 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.03.20 12:40:21 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2010.03.20 10:23:46 | 000,000,029 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\AVSMediaPlayer.m3u
[2010.03.17 16:19:46 | 000,000,144 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2010.03.17 16:19:46 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2010.03.17 16:19:45 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2010.03.17 16:19:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2010.03.17 16:19:44 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2010.03.17 16:14:11 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.10.07 08:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008.10.07 08:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
========== LOP Check ==========
[2010.10.28 09:04:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\.minecraft
[2010.03.20 13:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Ashampoo
[2010.07.27 20:45:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Atari
[2010.08.25 21:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Canopus
[2010.07.05 08:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\CheckPoint
[2010.10.09 16:01:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Chime
[2010.03.20 13:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools
[2010.09.23 13:36:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools Lite
[2010.06.29 15:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools Pro
[2010.10.26 08:35:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DiskSpaceFanPro
[2010.10.31 08:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DNA
[2010.10.24 09:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Downloaded Installations
[2010.08.15 18:50:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DVDVideoSoftIEHelpers
[2010.10.24 09:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ESET
[2010.07.15 10:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\GetRightToGo
[2010.08.31 16:50:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\GrabPro
[2010.08.29 13:19:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\InstantAction
[2010.09.11 07:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\JLC's Software
[2010.04.03 21:08:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Leadertech
[2010.07.07 17:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Lionhead Studios
[2010.06.25 15:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\MAGIX
[2010.06.26 21:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\My Games
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Need for Speed World
[2010.10.18 18:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Nokia
[2010.03.25 20:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\OpenOffice.org
[2010.05.29 16:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Opera
[2010.08.31 19:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Orbit
[2010.10.18 18:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\PC Suite
[2010.08.31 15:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ProgSense
[2010.04.21 17:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Scirra
[2010.09.21 16:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Screaming Bee
[2010.08.07 14:10:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Sony
[2010.10.24 09:19:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment
[2010.09.19 07:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.06.19 12:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\TeamViewer
[2010.07.19 06:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Turbine
[2010.07.02 09:53:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Unity
[2010.09.28 11:29:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\uTorrent
[2010.03.20 12:55:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\VitySoft
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Wormux
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ZombieDriver
[2010.09.04 13:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\2DBoy
[2010.10.28 13:08:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.03.20 13:52:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2010.08.25 21:58:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canopus
[2010.09.22 12:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.05.15 09:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Firefly Studios
[2010.10.18 18:17:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.07.13 17:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MAGIX
[2010.08.19 10:00:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nexon
[2010.08.19 10:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NexonEU
[2010.10.18 18:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010.10.10 16:44:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2010.10.26 08:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RegCure
[2010.09.18 07:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2010.09.21 16:08:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Screaming Bee
[2010.04.04 09:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Solidshield
[2010.07.27 17:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.10.18 15:05:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\YoYoGames
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2010.04.21 17:33:55 | 000,000,147 | ---- | M] () -- C:\.persist
[2010.09.04 21:37:44 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2010.10.28 11:54:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2002.09.23 13:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004.08.03 22:00:04 | 000,261,312 | RHS- | M] () -- C:\cmldr
[2010.03.17 15:30:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.03.20 14:21:30 | 000,000,216 | ---- | M] () -- C:\DebugTrace-RockallDLL.log
[2010.09.11 08:21:53 | 000,016,518 | ---- | M] () -- C:\GF_Excpt.txt
[2010.03.29 16:02:50 | 000,000,017 | ---- | M] () -- C:\gputest.txt
[2010.03.17 15:30:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.03.17 15:30:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008.04.13 21:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008.04.13 23:01:48 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2010.10.31 07:50:04 | 2146,942,976 | -HS- | M] () -- C:\pagefile.sys
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2010.03.17 16:11:43 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.03.17 16:11:43 | 001,093,632 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.03.17 16:11:43 | 000,479,232 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\drivers\*.sys /90 >
[2010.09.07 15:46:51 | 000,028,880 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aavmker4.sys
[2010.09.07 15:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys
[2010.09.07 15:47:16 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon.sys
[2010.09.07 15:47:19 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon2.sys
[2010.09.07 15:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswRdr.sys
[2010.09.07 15:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSP.sys
[2010.09.07 15:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswTdi.sys
[2010.09.22 12:43:17 | 000,691,696 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys
[2010.08.26 14:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\srv.sys
========== Files - Unicode (All) ==========
[2010.08.19 10:00:22 | 000,000,000 | ---D | M](C:\Documents and Settings\admin\Dokumenty\?? ???) -- C:\Documents and Settings\admin\Dokumenty\넥슨 플러그
[2010.08.19 10:00:22 | 000,000,000 | ---D | C](C:\Documents and Settings\admin\Dokumenty\?? ???) -- C:\Documents and Settings\admin\Dokumenty\넥슨 플러그
========== Alternate Data Streams ==========
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D06A4C76
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C
< End of report >
OTL logfile created on: 31.10.2010 8:23:52 - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\admin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 80,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 95,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,58 Gb Total Space | 4,32 Gb Free Space | 24,57% Space Free | Partition Type: NTFS
Drive D: | 19,68 Gb Total Space | 8,75 Gb Free Space | 44,45% Space Free | Partition Type: NTFS
Drive G: | 3,77 Gb Total Space | 2,17 Gb Free Space | 57,49% Space Free | Partition Type: FAT32
Computer Name: XXX-619471ABCC5 | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
PRC - [2010.10.31 08:18:11 | 000,258,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
PRC - [2010.09.07 16:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- D:\Avast!\AvastUI.exe
PRC - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- D:\Avast!\AvastSvc.exe
========== Modules (SafeList) ==========
MOD - [2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
MOD - [2010.08.23 17:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009.07.12 00:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2009.07.11 19:41:02 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll
MOD - [2008.04.14 07:51:46 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2008.04.13 22:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll
MOD - [2006.10.26 23:48:42 | 002,210,608 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll
MOD - [2006.10.26 23:48:34 | 000,955,680 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveUtil.dll
MOD - [2006.10.26 23:48:02 | 000,222,512 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveSystemServices.dll
MOD - [2006.10.26 23:47:40 | 000,022,808 | ---- | M] (Microsoft Corporation) -- D:\Microsoft Office 2007\Office12\GrooveNew.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010.09.22 12:38:14 | 002,950,744 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_062a651.dll -- (Akamai)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.09.07 16:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Avast!\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.06.14 14:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.03.29 07:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.08.27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Unknown | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2008.08.07 10:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2006.10.26 23:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Microsoft Office 2007\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
========== Driver Services (SafeList) ==========
DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_29.10.2010_20-05drv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena\plugins\UI\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | Unknown | Running] -- -- (11242572)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\11242571.sys -- (11242571)
DRV - [2010.09.22 12:43:17 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.09.07 15:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.09.07 15:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.09.07 15:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.09.07 15:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.09.07 15:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.09.07 15:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.05.22 17:32:32 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010.04.02 21:55:19 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010.04.02 21:55:19 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010.02.26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010.02.26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.02.26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010.02.26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009.11.25 23:06:34 | 000,034,384 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER)
DRV - [2009.09.19 05:29:36 | 004,477,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.08.19 13:05:56 | 000,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.05.14 14:49:26 | 000,055,768 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2009.05.14 14:49:26 | 000,033,096 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2009.05.14 14:49:22 | 000,133,000 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2009.05.14 14:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.05.30 13:13:26 | 000,027,704 | ---- | M] (Canopus Co,. Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cdrblock.sys -- (cdrblock)
DRV - [2008.04.14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2008.04.13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.03.18 15:09:16 | 000,350,720 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2008.02.11 15:55:04 | 000,586,240 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2008.01.23 09:19:44 | 000,501,560 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ACEDRV11.sys -- (acedrv11)
DRV - [2007.06.29 13:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.mvcr.cz:8080
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {000F1EA4-5E08-4564-A29B-29076F63A37A}:1.0.3.126
FF - prefs.js..extensions.enabledItems: runtime@panda3d.org:1.0.2
FF - prefs.js..extensions.enabledItems: yyginstantplay@yoyogames.com:1.1.0.24
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.732
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: D:\Nokia PC Suite\Nokia PC Suite 7\bkmrksync\ [2010.10.18 18:22:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.10.28 12:17:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.10.28 12:17:39 | 000,000,000 | ---D | M]
[2010.03.20 09:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Extensions
[2010.10.30 18:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions
[2010.08.21 21:30:12 | 000,000,000 | ---D | M] () -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}
[2010.10.21 17:18:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.15 18:50:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.07.01 14:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\eafo3fflauncher@ea.com
[2010.10.12 12:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\runtime@panda3d.org
[2010.10.18 15:03:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\2rdbr9ou.default\extensions\yyginstantplay@yoyogames.com
[2010.10.30 18:19:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.04.18 06:16:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.17 06:24:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.07.17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.01.13 23:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
[2010.07.25 21:10:07 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.07.25 21:10:07 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.07.25 21:10:07 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.07.25 21:10:07 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.07.25 21:10:07 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2010.10.28 19:28:32 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [avast5] D:\Avast!\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk = C:\Documents and Settings\admin\Local Settings\temp\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.bat ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Microsoft Office 2007\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\admin\Data aplikací\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Microsoft Office 2007\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 8840315531 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 8841698203 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office 2007\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Unable to start service SrService!
========== Files/Folders - Created Within 30 Days ==========
[2010.10.31 08:18:38 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
[2010.10.31 08:18:08 | 000,258,560 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
[2010.10.31 07:53:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010.10.30 08:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010.10.29 07:00:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\admin\Recent
[2010.10.28 22:09:14 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.10.28 21:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Plocha\Můj server
[2010.10.28 18:08:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Plocha\WoM Client
[2010.10.28 13:08:57 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.10.28 13:08:57 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.10.28 13:08:55 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.10.28 13:08:54 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.10.28 13:08:52 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.10.28 13:08:52 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.10.28 13:08:51 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.10.28 13:08:36 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010.10.28 13:08:35 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.10.28 13:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.10.28 11:54:15 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.10.28 10:31:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Malwarebytes
[2010.10.28 10:30:55 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.10.28 10:30:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.10.28 10:30:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.10.28 08:41:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\.minecraft
[2010.10.26 08:26:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\DiskSpaceFanPro
[2010.10.26 08:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\RegCure
[2010.10.25 15:25:16 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.10.25 13:59:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\.#
[2010.10.25 13:09:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.10.25 12:23:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\PackageAware
[2010.10.24 18:47:49 | 000,188,416 | ---- | C] (驊訊電子) -- C:\WINDOWS\System32\CMIMPEG2V.ax
[2010.10.24 18:47:47 | 000,352,256 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\ActiveSkin.ocx
[2010.10.24 18:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\C-Media Audio
[2010.10.24 09:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\ESET
[2010.10.24 09:19:20 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\ZombieDriver
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Wormux
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment
[2010.10.24 09:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Need for Speed World
[2010.10.23 07:29:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.10.20 18:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\AaaaaRecklessDisregard
[2010.10.19 19:07:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.10.19 19:05:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.10.19 19:05:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.10.19 19:01:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010.10.19 18:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2010.10.19 18:49:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010.10.19 18:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft Help
[2010.10.19 18:46:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2010.10.18 18:30:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Nokia
[2010.10.18 18:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\PC Suite
[2010.10.18 18:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010.10.18 18:22:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010.10.18 18:22:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010.10.18 18:21:50 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010.10.18 18:21:48 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010.10.18 18:21:27 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010.10.18 18:21:02 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010.10.18 18:21:00 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010.10.18 18:20:58 | 000,022,528 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010.10.18 18:20:55 | 000,662,016 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010.10.18 18:20:55 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010.10.18 18:20:36 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010.10.18 18:17:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.10.18 15:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\YoYoGames
[2010.10.18 15:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dokumenty\YoYoGames
[2010.10.16 14:07:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dokumenty\AeriaGames
[2010.10.15 15:31:53 | 000,000,000 | ---D | C] -- C:\vcs5BGEffects
[2010.10.15 07:57:12 | 000,000,000 | ---D | C] -- C:\Program Files\Eagle Dynamics
[2010.10.13 17:14:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\MixMeister Technology
[2010.10.12 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Panda3D
[2010.10.12 11:20:09 | 000,000,000 | ---D | C] -- C:\Rbackup
[2010.10.09 16:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Downloaded Installations
[2010.10.09 16:01:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Chime
[2010.10.09 16:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft XNA
[2010.10.09 14:19:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Chart Controls
[2010.10.08 11:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2010.10.08 11:54:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Data aplikací\Google
[2010.10.08 11:52:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Local Settings\Data aplikací\Temp
[2010.10.08 11:52:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.10.07 08:50:54 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2010.10.07 08:50:53 | 000,444,952 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2010.10.02 09:21:45 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.10.31 08:18:39 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTL.exe
[2010.10.31 08:18:11 | 000,258,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Plocha\OTH.scr
[2010.10.31 07:54:10 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk
[2010.10.31 07:53:07 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.10.31 07:53:07 | 000,437,062 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.10.31 07:53:07 | 000,082,462 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.10.31 07:53:07 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.10.31 07:52:06 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.10.31 07:50:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.10.30 20:58:58 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.10.30 17:21:59 | 000,110,045 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\IMG_30102010_181958.png
[2010.10.30 17:12:20 | 003,336,278 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Nový objekt - WinRAR archiv.rar
[2010.10.29 06:54:21 | 000,000,460 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\CCleaner.lnk
[2010.10.28 19:40:01 | 000,002,311 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\HiJackThis.lnk
[2010.10.28 19:28:32 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.10.28 13:08:58 | 000,000,487 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.10.28 13:08:52 | 000,002,535 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.10.28 11:54:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2010.10.28 10:30:57 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.10.27 07:11:37 | 003,640,704 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.26 08:25:39 | 000,000,436 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Disk Space Fan Pro.lnk
[2010.10.26 08:07:18 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\RegCure.lnk
[2010.10.25 16:01:56 | 000,068,993 | ---- | M] () -- C:\WINDOWS\War3Unin.dat
[2010.10.25 15:39:43 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2010.10.25 15:39:43 | 000,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif
[2010.10.25 13:07:54 | 000,000,410 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\ERUNT.lnk
[2010.10.25 12:56:46 | 000,000,460 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\AML Free Registry Cleaner.lnk
[2010.10.24 18:47:50 | 000,000,144 | ---- | M] () -- C:\WINDOWS\CMISETUP.INI
[2010.10.22 19:14:05 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Eufloria.lnk
[2010.10.19 17:42:12 | 000,181,243 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\měsíc ve sluneční soustavě.psd
[2010.10.19 15:39:49 | 000,058,075 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\styly stinu.jpg
[2010.10.18 18:35:21 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2010.10.18 18:35:15 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2010.10.18 18:34:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010.10.18 18:34:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.18 18:22:47 | 000,001,564 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nokia PC Suite.lnk
[2010.10.18 14:52:19 | 000,000,029 | ---- | M] () -- C:\Documents and Settings\admin\Data aplikací\AVSMediaPlayer.m3u
[2010.10.16 16:39:14 | 012,300,298 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\01 - Spitfire.mp3
[2010.10.16 07:44:15 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.10.16 07:06:54 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.10.15 16:03:51 | 000,000,453 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\FL Studio 9.lnk
[2010.10.14 08:28:20 | 009,110,458 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\MixMeister Almost Everything Mix.mp3
[2010.10.13 17:14:14 | 000,000,475 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\MixMeister Fusion.lnk
[2010.10.12 12:19:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\Robota.INI
[2010.10.12 11:17:16 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\AK083E209605E394C.lie
[2010.10.10 12:10:21 | 000,000,342 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\next page.html
[2010.10.10 12:04:37 | 000,000,534 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\index.html
[2010.10.10 07:20:44 | 000,051,238 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\Skype Marxadus.jpg
[2010.10.09 18:55:28 | 000,423,678 | ---- | M] () -- C:\Documents and Settings\admin\Dokumenty\Jeepee.psd
[2010.10.09 17:44:03 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Audiosurf.lnk
[2010.10.09 15:37:57 | 000,000,499 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\RAR Password Recovery Magic.lnk
[2010.10.09 09:37:11 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\KitsuSaga.lnk
[2010.10.07 19:36:27 | 000,231,422 | ---- | M] () -- C:\Documents and Settings\admin\Plocha\jumper.png
[2010.10.07 08:50:53 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.10.31 07:54:10 | 000,001,044 | ---- | C] () -- C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_29.10.2010_20-05.exe.lnk
[2010.10.30 17:21:49 | 000,110,045 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\IMG_30102010_181958.png
[2010.10.30 17:12:02 | 003,336,278 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Nový objekt - WinRAR archiv.rar
[2010.10.29 06:54:21 | 000,000,460 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\CCleaner.lnk
[2010.10.28 13:08:58 | 000,000,487 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.10.28 11:54:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2010.10.28 11:54:17 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2010.10.28 10:30:57 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.10.28 08:06:54 | 000,002,311 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\HiJackThis.lnk
[2010.10.26 08:25:39 | 000,000,436 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Disk Space Fan Pro.lnk
[2010.10.26 08:07:18 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\RegCure.lnk
[2010.10.25 15:25:19 | 000,068,993 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010.10.25 15:25:17 | 000,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif
[2010.10.25 13:07:54 | 000,000,410 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\ERUNT.lnk
[2010.10.25 12:56:46 | 000,000,460 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\AML Free Registry Cleaner.lnk
[2010.10.24 18:47:50 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\CMIVCDNav.ax
[2010.10.24 18:47:49 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\CMIEffect.ax
[2010.10.24 18:47:49 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\CMIEchoFilter.ax
[2010.10.24 18:47:49 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\CMICDDAFilter.ax
[2010.10.22 19:14:05 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Eufloria.lnk
[2010.10.21 18:21:52 | 002,072,239 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Space_Water_Brushes_by_Kikariz.abr
[2010.10.21 18:18:54 | 000,093,458 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\signage1.abr
[2010.10.19 17:42:11 | 000,181,243 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\měsíc ve sluneční soustavě.psd
[2010.10.19 15:39:44 | 000,058,075 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\styly stinu.jpg
[2010.10.18 18:35:21 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
[2010.10.18 18:35:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf
[2010.10.18 18:34:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010.10.18 18:34:08 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010.10.18 18:22:47 | 000,001,564 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nokia PC Suite.lnk
[2010.10.16 16:43:11 | 012,300,298 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\01 - Spitfire.mp3
[2010.10.16 09:41:07 | 000,111,801 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\tapeta.jpg
[2010.10.16 07:06:53 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.10.15 16:03:51 | 000,000,453 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\FL Studio 9.lnk
[2010.10.14 08:20:54 | 009,110,458 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\MixMeister Almost Everything Mix.mp3
[2010.10.13 17:14:14 | 000,000,475 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\MixMeister Fusion.lnk
[2010.10.12 18:08:08 | 002,666,205 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Sum 41 - No Brains.mp3
[2010.10.12 11:17:16 | 000,000,042 | ---- | C] () -- C:\WINDOWS\System32\AK083E209605E394C.lie
[2010.10.12 10:15:16 | 000,000,652 | ---- | C] () -- C:\WINDOWS\FIX.reg
[2010.10.12 10:15:16 | 000,000,280 | ---- | C] () -- C:\WINDOWS\reset.reg
[2010.10.10 12:10:21 | 000,000,342 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\next page.html
[2010.10.10 12:04:37 | 000,000,534 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\index.html
[2010.10.10 07:20:40 | 000,051,238 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\Skype Marxadus.jpg
[2010.10.09 18:55:28 | 000,423,678 | ---- | C] () -- C:\Documents and Settings\admin\Dokumenty\Jeepee.psd
[2010.10.09 17:44:03 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Audiosurf.lnk
[2010.10.09 15:37:57 | 000,000,499 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\RAR Password Recovery Magic.lnk
[2010.10.09 09:37:10 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\KitsuSaga.lnk
[2010.10.07 19:36:25 | 000,231,422 | ---- | C] () -- C:\Documents and Settings\admin\Plocha\jumper.png
[2010.09.19 10:55:16 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010.09.18 17:50:16 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\Adobe Formát PNG CS5 – předvolby
[2010.08.31 14:10:06 | 000,000,046 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DonationCoder_DrWindows_InstallInfo.dat
[2010.08.25 21:58:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\canopus.ini
[2010.08.25 21:14:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\pavedius5db.dll
[2010.08.25 21:14:06 | 000,030,720 | ---- | C] () -- C:\WINDOWS\System32\pavedius.dll
[2010.08.25 21:14:06 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\pavplal.dll
[2010.08.16 13:12:06 | 000,000,829 | ---- | C] () -- C:\WINDOWS\GTA-SA_Trn_Settings.ini
[2010.08.03 09:18:26 | 000,000,046 | ---- | C] () -- C:\WINDOWS\nfsc_patch.ini
[2010.07.18 22:45:08 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
[2010.07.14 08:16:23 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010.07.11 17:15:43 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll
[2010.07.11 17:12:21 | 000,006,211 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2010.07.10 17:24:27 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2010.07.09 20:04:40 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010.06.29 19:41:20 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2010.06.27 11:04:37 | 000,000,028 | ---- | C] () -- C:\WINDOWS\Robota.INI
[2010.05.24 14:48:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\leverage.drm.log
[2010.05.04 16:11:11 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010.04.12 14:09:17 | 000,230,752 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2010.04.10 08:33:57 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2010.04.07 13:06:31 | 000,015,872 | ---- | C] () -- C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.02 21:55:19 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010.04.02 21:55:19 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010.03.31 17:08:03 | 000,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.03.31 17:08:02 | 000,139,152 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\PnkBstrK.sys
[2010.03.20 13:10:43 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.03.20 12:40:21 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2010.03.20 10:23:46 | 000,000,029 | ---- | C] () -- C:\Documents and Settings\admin\Data aplikací\AVSMediaPlayer.m3u
[2010.03.17 16:19:46 | 000,000,144 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2010.03.17 16:19:46 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2010.03.17 16:19:45 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2010.03.17 16:19:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2010.03.17 16:19:44 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2010.03.17 16:14:11 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.10.07 08:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008.10.07 08:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008.10.07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
========== LOP Check ==========
[2010.10.28 09:04:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\.minecraft
[2010.03.20 13:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Ashampoo
[2010.07.27 20:45:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Atari
[2010.08.25 21:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Canopus
[2010.07.05 08:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\CheckPoint
[2010.10.09 16:01:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Chime
[2010.03.20 13:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools
[2010.09.23 13:36:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools Lite
[2010.06.29 15:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DAEMON Tools Pro
[2010.10.26 08:35:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DiskSpaceFanPro
[2010.10.31 08:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DNA
[2010.10.24 09:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Downloaded Installations
[2010.08.15 18:50:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\DVDVideoSoftIEHelpers
[2010.10.24 09:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ESET
[2010.07.15 10:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\GetRightToGo
[2010.08.31 16:50:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\GrabPro
[2010.08.29 13:19:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\InstantAction
[2010.09.11 07:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\JLC's Software
[2010.04.03 21:08:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Leadertech
[2010.07.07 17:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Lionhead Studios
[2010.06.25 15:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\MAGIX
[2010.06.26 21:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\My Games
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Need for Speed World
[2010.10.18 18:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Nokia
[2010.03.25 20:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\OpenOffice.org
[2010.05.29 16:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Opera
[2010.08.31 19:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Orbit
[2010.10.18 18:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\PC Suite
[2010.08.31 15:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ProgSense
[2010.04.21 17:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Scirra
[2010.09.21 16:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Screaming Bee
[2010.08.07 14:10:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Sony
[2010.10.24 09:19:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment
[2010.09.19 07:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.06.19 12:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\TeamViewer
[2010.07.19 06:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Turbine
[2010.07.02 09:53:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Unity
[2010.09.28 11:29:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\uTorrent
[2010.03.20 12:55:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\VitySoft
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\Wormux
[2010.10.24 09:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Data aplikací\ZombieDriver
[2010.09.04 13:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\2DBoy
[2010.10.28 13:08:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.03.20 13:52:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2010.08.25 21:58:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canopus
[2010.09.22 12:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.05.15 09:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Firefly Studios
[2010.10.18 18:17:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2010.07.13 17:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MAGIX
[2010.08.19 10:00:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nexon
[2010.08.19 10:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NexonEU
[2010.10.18 18:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010.10.10 16:44:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2010.10.26 08:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RegCure
[2010.09.18 07:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2010.09.21 16:08:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Screaming Bee
[2010.04.04 09:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Solidshield
[2010.07.27 17:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.10.18 15:05:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\YoYoGames
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2010.04.21 17:33:55 | 000,000,147 | ---- | M] () -- C:\.persist
[2010.09.04 21:37:44 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2010.10.28 11:54:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2002.09.23 13:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004.08.03 22:00:04 | 000,261,312 | RHS- | M] () -- C:\cmldr
[2010.03.17 15:30:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.03.20 14:21:30 | 000,000,216 | ---- | M] () -- C:\DebugTrace-RockallDLL.log
[2010.09.11 08:21:53 | 000,016,518 | ---- | M] () -- C:\GF_Excpt.txt
[2010.03.29 16:02:50 | 000,000,017 | ---- | M] () -- C:\gputest.txt
[2010.03.17 15:30:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.03.17 15:30:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008.04.13 21:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008.04.13 23:01:48 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2010.10.31 07:50:04 | 2146,942,976 | -HS- | M] () -- C:\pagefile.sys
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2010.03.17 16:11:43 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.03.17 16:11:43 | 001,093,632 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.03.17 16:11:43 | 000,479,232 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\drivers\*.sys /90 >
[2010.09.07 15:46:51 | 000,028,880 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aavmker4.sys
[2010.09.07 15:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys
[2010.09.07 15:47:16 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon.sys
[2010.09.07 15:47:19 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswmon2.sys
[2010.09.07 15:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswRdr.sys
[2010.09.07 15:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswSP.sys
[2010.09.07 15:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- C:\WINDOWS\system32\drivers\aswTdi.sys
[2010.09.22 12:43:17 | 000,691,696 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys
[2010.08.26 14:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\srv.sys
========== Files - Unicode (All) ==========
[2010.08.19 10:00:22 | 000,000,000 | ---D | M](C:\Documents and Settings\admin\Dokumenty\?? ???) -- C:\Documents and Settings\admin\Dokumenty\넥슨 플러그
[2010.08.19 10:00:22 | 000,000,000 | ---D | C](C:\Documents and Settings\admin\Dokumenty\?? ???) -- C:\Documents and Settings\admin\Dokumenty\넥슨 플러그
========== Alternate Data Streams ==========
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D06A4C76
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C
< End of report >
Pokud máte rádi elektronickou hudbu a nemáte co na práci, můžete si poslechnout mou hudební tvorbu na SoundCloudu.
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Re: Proces "svchost.exe" vytěžuje PC
Extras:
OTL Extras logfile created on: 31.10.2010 8:23:52 - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\admin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 80,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 95,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,58 Gb Total Space | 4,32 Gb Free Space | 24,57% Space Free | Partition Type: NTFS
Drive D: | 19,68 Gb Total Space | 8,75 Gb Free Space | 44,45% Space Free | Partition Type: NTFS
Drive G: | 3,77 Gb Total Space | 2,17 Gb Free Space | 57,49% Space Free | Partition Type: FAT32
Computer Name: XXX-619471ABCC5 | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "D:\Microsoft Office 2007\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Microsoft Office 2007\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- D:\Adobe PS CS5\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- D:\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57688:TCP" = 57688:TCP:*:Enabled:Pando Media Booster
"57688:UDP" = 57688:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"58010:TCP" = 58010:TCP:*:Enabled:Pando Media Booster
"58010:UDP" = 58010:UDP:*:Enabled:Pando Media Booster
"1947:TCP" = 1947:TCP:*:Enabled:HASP SRM
"1947:UDP" = 1947:UDP:*:Enabled:HASP SRM
"26897:TCP" = 26897:TCP:*:Disabled:SolidNetworkManager
"26897:UDP" = 26897:UDP:*:Disabled:SolidNetworkManager
"57688:TCP" = 57688:TCP:*:Enabled:Pando Media Booster
"57688:UDP" = 57688:UDP:*:Enabled:Pando Media Booster
"1036:TCP" = 1036:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe" = C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"D:\uTorrent\utorrent.exe" = D:\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\games\Audiosurf\engine\QuestViewer.exe" = D:\games\Audiosurf\engine\QuestViewer.exe:*:Enabled:QuestViewer -- ()
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Xfire\Xfire.exe" = C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Online PTE LTD)
"C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
"C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment\Installed Games\Clone Wars\CloneWars.exe" = C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment\Installed Games\Clone Wars\CloneWars.exe:*:Enabled:CloneWars -- ()
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"D:\Steam\Steam.exe" = D:\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"D:\Microsoft Office 2007\Office12\GROOVE.EXE" = D:\Microsoft Office 2007\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"D:\Microsoft Office 2007\Office12\ONENOTE.EXE" = D:\Microsoft Office 2007\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\WINDOWS\system32\java.exe" = C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_uinst_Install Wizard" = Install Wizard
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03ADC8AB-C130-0C3D-1FF9-2C385DF25689}" = CCC Help Czech
"{03B1C701-5B73-4a25-BB9B-9F5178349E7B}" = EDIUS 5 Settings
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07021185-008D-ABF9-7716-475AC035F8B3}" = CCC Help Spanish
"{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F8D0406-7755-AC37-6529-73AD649DBE32}" = Catalyst Control Center Graphics Previews Common
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1B9B5B3B-28E7-4E59-A80D-D670AA984514}" = Nokia Connectivity Cable Driver
"{1CF32316-9308-25E1-9E5C-A3DC04763A49}" = ATI Catalyst Install Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20c31435-2a0a-4580-be8b-ac06fc243ca4}" = Python 2.7
"{22072CC8-7230-96F8-52F4-05EAF3F906B6}" = CCC Help Polish
"{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}" = Nokia PC Suite
"{2368ADBD-6FDF-4B9F-FE41-E20B4D78E79E}" = CCC Help Chinese Standard
"{25EF0DC4-B072-2E04-4581-A13C91423CE6}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{26F7855C-443B-00A6-F7B8-A97A5403F617}" = CCC Help Danish
"{2CB4A925-48A7-DA65-DCEE-D4DE224B7D84}" = CCC Help English
"{306D75B9-7FFF-FF65-0C76-57F2FE4FE1D6}" = Catalyst Control Center Core Implementation
"{315F5FFC-1A5C-4A2A-B8E7-1C5B1174C198}_is1" = AML Free Registry Cleaner 4.21
"{32B12FE4-5A51-751A-1FB6-A14E97EBDD5C}" = CCC Help German
"{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{351512E5-01BD-E878-6F57-AA3E517D9ECE}" = Skins
"{354A387E-0374-21A3-6832-335674A6D7D1}" = CCC Help French
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C00BEE9-26D0-D9E0-A2D1-62F70D412A12}" = CCC Help Turkish
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{4346F7AA-3D56-0941-424C-4454E04D37F6}" = CCC Help Italian
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CAE2F2C-75CD-A0DE-7520-449BCBBCC833}" = CCC Help Korean
"{4DE938F7-C196-43D7-8EEB-411CDE0A96B1}" = System Requirements Lab
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{57F7F0A5-8F22-8E63-E819-803B5C9CA3A5}" = CCC Help Dutch
"{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}" = OpenOffice.org 3.2
"{5EA437D2-7A57-B60E-E8F2-76BFAC0895A5}" = CCC Help Chinese Traditional
"{61AF4E75-050E-0304-3417-8BC16417FEB1}" = CCC Help Greek
"{632005DA-C291-5275-284C-5EE96B05C714}" = Catalyst Control Center HydraVision Full
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6C72BE0C-3E25-CACD-0070-2FD9C02ABA14}" = ccc-core-preinstall
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{70312451-0D00-4A84-B9B1-0D59B5180A4F}" = Opera 10.53
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{880BB617-914E-17E8-D877-A96BAC5794D2}" = Catalyst Control Center Graphics Full New
"{8897CF22-DB6C-8248-895C-12BFA2677F51}" = CCC Help Hungarian
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{957D345E-ADDB-9844-1BBF-C81BCDDAB895}" = Catalyst Control Center InstallProxy
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A25A7B10-75EA-4208-AAF1-0E3841C444F1}" = MorphVOX Pro
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB49B509-8FCA-45E6-9FB9-9E4AEEB8F148}" = System Requirements Lab CYRI
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.0 - Czech
"{AC76BA86-7AD7-2448-0000-900000000003}" = Chinese Traditional Fonts Support For Adobe Reader 9
"{AF710FDE-2815-8C8D-5281-8004C2654AA6}" = CCC Help Russian
"{AFF2D965-C6F2-A210-FBF7-532612AA1D23}" = CCC Help Swedish
"{B21336EE-4AEF-9940-4AC7-EDB89854B8D3}" = CCC Help Thai
"{BBA69346-61A1-BD34-E75A-4D81232DB1FE}" = Catalyst Control Center Localization All
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFD5ED08-F066-92D5-BE67-3B9AE5DCFF0C}" = CCC Help Japanese
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4609F15-FB3C-D97E-BAA1-4F10815039C2}" = Catalyst Control Center Graphics Full Existing
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D01FAC3D-86B4-3A19-9D10-9156A0EB3EBE}" = CCC Help Finnish
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D73722C8-3F65-C75B-A631-5D36894DAB92}" = ccc-core-static
"{D801B39E-CE01-409F-8E7C-B7976EA3C9DC}_is1" = Audiosurf
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DDAD33B6-8C00-428D-087B-A7088355B9BE}" = Catalyst Control Center Graphics Light
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E333F074-FC7F-596D-3D61-44F0EC28E8C0}" = ccc-utility
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E89B484C-B913-49A0-959B-89E836001658}" = GEAR 32bit Driver Installer
"{F85E4782-5B90-4845-9D7D-D11DE2F5EA5E}" = HydraVision
"{FA38F9E4-BED7-E021-B660-8FDFF7EC6E1A}" = CCC Help Norwegian
"{FA8B6532-78E9-490B-B97D-32379E16810E}" = EDIUS 5(SetupManager)
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"34EA302E7F4CBD17A19E33BBCB72363234956D7E" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 4.5)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"ASIO4ALL" = ASIO4ALL
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"AVS Media Player_is1" = AVS Media Player 3.1
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"CamStudio" = CamStudio
"CCleaner" = CCleaner
"C-Media Audio" = C-Media Audio
"C-Media Audio Driver" = C-Media WDM Audio Driver
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Disk Space Fan Pro_is1" = Disk Space Fan Pro 2.2.7.821
"Dr.Windows_is1" = Dr.Windows 1.04.01
"EEEE705096F837B7907659F100C9FE6DA001970F" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 7.01.0.7)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ERUNT_is1" = ERUNT 1.1j
"FL Studio 9" = FL Studio 9
"Fraps" = Fraps (remove only)
"Free Mp3/Wma/Ogg Converter_is1" = Free Mp3/Wma/Ogg Converter 4.0.1
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"Garena" = Garena 2010
"Hamachi" = Hamachi 1.0.2.5
"Hardcore" = Hardcore
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1
"ie8" = Windows Internet Explorer 8
"IL Download Manager" = IL Download Manager
"Indeo® Software" = Indeo® Software
"KitsuSaga" = KitsuSaga
"MAGIX Music Maker 16 Premium Download Version UK" = MAGIX Music Maker 16 Premium Download Version
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MixMeister Fusion 7.2.2_is1" = MixMeister Fusion 7.2.2
"Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12)
"Neffy" = Neffy 1,3,29,0
"Nokia PC Suite" = Nokia PC Suite
"OGPlanet Game Launcher US" = OGPlanet Game Launcher
"OpenAL" = OpenAL
"PoiZone" = PoiZone
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PunkBusterSvc" = PunkBuster Services
"RAR Password Recovery Magic_is1" = RAR Password Recovery Magic v6.1.1.140
"RegCure" = RegCure
"Sawer" = Sawer
"ST6UNST #1" = Need For Speed Most Wanted (Black Edition 1.3) Mega Trainer
"Toxic Biohazard" = Toxic Biohazard
"Uninstall_is1" = Uninstall 1.0.0.1
"Unlocker" = Unlocker 1.9.0
"VLC media player" = VLC media player 1.1.1
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"Xfire" = Xfire (remove only)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"SOE-Clone Wars" = Clone Wars
"UnityWebPlayer" = Unity Web Player
"Warcraft III" = Warcraft III: All Products
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 30.6.2010 10:24:50 | Computer Name = XXX-619471ABCC5 | Source = MPSampleSubmission | ID = 5000
Description =
Error - 30.6.2010 11:16:16 | Computer Name = XXX-619471ABCC5 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace AVSMediaPlayer.exe, verze 3.1.1.172, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 1.7.2010 4:50:24 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x4ebf83bd.
Error - 1.7.2010 7:11:34 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul terrainengine.dll,
verze 0.0.0.0, adresa chyby 0x000015ec.
Error - 2.7.2010 6:46:15 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul directinput.dll,
verze 0.0.0.0, adresa chyby 0x000028a4.
Error - 2.7.2010 6:47:01 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul directinput.dll,
verze 0.0.0.0, adresa chyby 0x000028a4.
[ System Events ]
Error - 28.10.2010 8:34:22 | Computer Name = XXX-619471ABCC5 | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA359\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 28.10.2010 8:37:27 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7000
Description = Služba ESET Service neuspěla při spuštění v důsledku následující chyby:
%%3
Error - 28.10.2010 8:37:37 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: ehdrv
Error - 30.10.2010 2:30:37 | Computer Name = XXX-619471ABCC5 | Source = Dhcp | ID = 1001
Description = Počítači nebyla přiřazena síťová adresa (serverem DHCP) pro síťovou
kartu se síťovou adresou 7A7905ACA2ED. Došlo k následující chybě: %%121. Počítač
se bude pokoušet získat síťovou adresu samostatně ze serveru DHCP.
Error - 31.10.2010 3:22:55 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba Ati HotKey Poller byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 31.10.2010 3:22:56 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba FABS - Helping agent for MAGIX media database byla neočekávaně
ukončena. Tento stav nastal již 1krát.
Error - 31.10.2010 3:22:56 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error - 31.10.2010 3:22:57 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 31.10.2010 3:24:49 | Computer Name = XXX-619471ABCC5 | Source = SRService | ID = 104
Description = Proces inicializace nástroje Obnovení systému se nezdařil.
Error - 31.10.2010 3:24:49 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7023
Description = Služba Služba obnovení systému byla ukončena s následující chybou:
%%2
< End of report >
OTL Extras logfile created on: 31.10.2010 8:23:52 - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\admin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 80,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 95,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 17,58 Gb Total Space | 4,32 Gb Free Space | 24,57% Space Free | Partition Type: NTFS
Drive D: | 19,68 Gb Total Space | 8,75 Gb Free Space | 44,45% Space Free | Partition Type: NTFS
Drive G: | 3,77 Gb Total Space | 2,17 Gb Free Space | 57,49% Space Free | Partition Type: FAT32
Computer Name: XXX-619471ABCC5 | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "D:\Microsoft Office 2007\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Microsoft Office 2007\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- D:\Adobe PS CS5\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- D:\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57688:TCP" = 57688:TCP:*:Enabled:Pando Media Booster
"57688:UDP" = 57688:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"58010:TCP" = 58010:TCP:*:Enabled:Pando Media Booster
"58010:UDP" = 58010:UDP:*:Enabled:Pando Media Booster
"1947:TCP" = 1947:TCP:*:Enabled:HASP SRM
"1947:UDP" = 1947:UDP:*:Enabled:HASP SRM
"26897:TCP" = 26897:TCP:*:Disabled:SolidNetworkManager
"26897:UDP" = 26897:UDP:*:Disabled:SolidNetworkManager
"57688:TCP" = 57688:TCP:*:Enabled:Pando Media Booster
"57688:UDP" = 57688:UDP:*:Enabled:Pando Media Booster
"1036:TCP" = 1036:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe" = C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"D:\uTorrent\utorrent.exe" = D:\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\games\Audiosurf\engine\QuestViewer.exe" = D:\games\Audiosurf\engine\QuestViewer.exe:*:Enabled:QuestViewer -- ()
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Xfire\Xfire.exe" = C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Online PTE LTD)
"C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
"C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment\Installed Games\Clone Wars\CloneWars.exe" = C:\Documents and Settings\admin\Data aplikací\Sony Online Entertainment\Installed Games\Clone Wars\CloneWars.exe:*:Enabled:CloneWars -- ()
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"D:\Steam\Steam.exe" = D:\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"D:\Microsoft Office 2007\Office12\GROOVE.EXE" = D:\Microsoft Office 2007\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"D:\Microsoft Office 2007\Office12\ONENOTE.EXE" = D:\Microsoft Office 2007\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\WINDOWS\system32\java.exe" = C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_uinst_Install Wizard" = Install Wizard
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03ADC8AB-C130-0C3D-1FF9-2C385DF25689}" = CCC Help Czech
"{03B1C701-5B73-4a25-BB9B-9F5178349E7B}" = EDIUS 5 Settings
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07021185-008D-ABF9-7716-475AC035F8B3}" = CCC Help Spanish
"{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F8D0406-7755-AC37-6529-73AD649DBE32}" = Catalyst Control Center Graphics Previews Common
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1B9B5B3B-28E7-4E59-A80D-D670AA984514}" = Nokia Connectivity Cable Driver
"{1CF32316-9308-25E1-9E5C-A3DC04763A49}" = ATI Catalyst Install Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20c31435-2a0a-4580-be8b-ac06fc243ca4}" = Python 2.7
"{22072CC8-7230-96F8-52F4-05EAF3F906B6}" = CCC Help Polish
"{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}" = Nokia PC Suite
"{2368ADBD-6FDF-4B9F-FE41-E20B4D78E79E}" = CCC Help Chinese Standard
"{25EF0DC4-B072-2E04-4581-A13C91423CE6}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{26F7855C-443B-00A6-F7B8-A97A5403F617}" = CCC Help Danish
"{2CB4A925-48A7-DA65-DCEE-D4DE224B7D84}" = CCC Help English
"{306D75B9-7FFF-FF65-0C76-57F2FE4FE1D6}" = Catalyst Control Center Core Implementation
"{315F5FFC-1A5C-4A2A-B8E7-1C5B1174C198}_is1" = AML Free Registry Cleaner 4.21
"{32B12FE4-5A51-751A-1FB6-A14E97EBDD5C}" = CCC Help German
"{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{351512E5-01BD-E878-6F57-AA3E517D9ECE}" = Skins
"{354A387E-0374-21A3-6832-335674A6D7D1}" = CCC Help French
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C00BEE9-26D0-D9E0-A2D1-62F70D412A12}" = CCC Help Turkish
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{4346F7AA-3D56-0941-424C-4454E04D37F6}" = CCC Help Italian
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CAE2F2C-75CD-A0DE-7520-449BCBBCC833}" = CCC Help Korean
"{4DE938F7-C196-43D7-8EEB-411CDE0A96B1}" = System Requirements Lab
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{57F7F0A5-8F22-8E63-E819-803B5C9CA3A5}" = CCC Help Dutch
"{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}" = OpenOffice.org 3.2
"{5EA437D2-7A57-B60E-E8F2-76BFAC0895A5}" = CCC Help Chinese Traditional
"{61AF4E75-050E-0304-3417-8BC16417FEB1}" = CCC Help Greek
"{632005DA-C291-5275-284C-5EE96B05C714}" = Catalyst Control Center HydraVision Full
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6C72BE0C-3E25-CACD-0070-2FD9C02ABA14}" = ccc-core-preinstall
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{70312451-0D00-4A84-B9B1-0D59B5180A4F}" = Opera 10.53
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{880BB617-914E-17E8-D877-A96BAC5794D2}" = Catalyst Control Center Graphics Full New
"{8897CF22-DB6C-8248-895C-12BFA2677F51}" = CCC Help Hungarian
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{957D345E-ADDB-9844-1BBF-C81BCDDAB895}" = Catalyst Control Center InstallProxy
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A25A7B10-75EA-4208-AAF1-0E3841C444F1}" = MorphVOX Pro
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB49B509-8FCA-45E6-9FB9-9E4AEEB8F148}" = System Requirements Lab CYRI
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.0 - Czech
"{AC76BA86-7AD7-2448-0000-900000000003}" = Chinese Traditional Fonts Support For Adobe Reader 9
"{AF710FDE-2815-8C8D-5281-8004C2654AA6}" = CCC Help Russian
"{AFF2D965-C6F2-A210-FBF7-532612AA1D23}" = CCC Help Swedish
"{B21336EE-4AEF-9940-4AC7-EDB89854B8D3}" = CCC Help Thai
"{BBA69346-61A1-BD34-E75A-4D81232DB1FE}" = Catalyst Control Center Localization All
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFD5ED08-F066-92D5-BE67-3B9AE5DCFF0C}" = CCC Help Japanese
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4609F15-FB3C-D97E-BAA1-4F10815039C2}" = Catalyst Control Center Graphics Full Existing
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D01FAC3D-86B4-3A19-9D10-9156A0EB3EBE}" = CCC Help Finnish
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D73722C8-3F65-C75B-A631-5D36894DAB92}" = ccc-core-static
"{D801B39E-CE01-409F-8E7C-B7976EA3C9DC}_is1" = Audiosurf
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DDAD33B6-8C00-428D-087B-A7088355B9BE}" = Catalyst Control Center Graphics Light
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E333F074-FC7F-596D-3D61-44F0EC28E8C0}" = ccc-utility
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E89B484C-B913-49A0-959B-89E836001658}" = GEAR 32bit Driver Installer
"{F85E4782-5B90-4845-9D7D-D11DE2F5EA5E}" = HydraVision
"{FA38F9E4-BED7-E021-B660-8FDFF7EC6E1A}" = CCC Help Norwegian
"{FA8B6532-78E9-490B-B97D-32379E16810E}" = EDIUS 5(SetupManager)
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"34EA302E7F4CBD17A19E33BBCB72363234956D7E" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 4.5)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"ASIO4ALL" = ASIO4ALL
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"AVS Media Player_is1" = AVS Media Player 3.1
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"CamStudio" = CamStudio
"CCleaner" = CCleaner
"C-Media Audio" = C-Media Audio
"C-Media Audio Driver" = C-Media WDM Audio Driver
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Disk Space Fan Pro_is1" = Disk Space Fan Pro 2.2.7.821
"Dr.Windows_is1" = Dr.Windows 1.04.01
"EEEE705096F837B7907659F100C9FE6DA001970F" = Balíček ovladače systému Windows - Nokia Modem (06/09/2010 7.01.0.7)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ERUNT_is1" = ERUNT 1.1j
"FL Studio 9" = FL Studio 9
"Fraps" = Fraps (remove only)
"Free Mp3/Wma/Ogg Converter_is1" = Free Mp3/Wma/Ogg Converter 4.0.1
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"Garena" = Garena 2010
"Hamachi" = Hamachi 1.0.2.5
"Hardcore" = Hardcore
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1
"ie8" = Windows Internet Explorer 8
"IL Download Manager" = IL Download Manager
"Indeo® Software" = Indeo® Software
"KitsuSaga" = KitsuSaga
"MAGIX Music Maker 16 Premium Download Version UK" = MAGIX Music Maker 16 Premium Download Version
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MixMeister Fusion 7.2.2_is1" = MixMeister Fusion 7.2.2
"Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12)
"Neffy" = Neffy 1,3,29,0
"Nokia PC Suite" = Nokia PC Suite
"OGPlanet Game Launcher US" = OGPlanet Game Launcher
"OpenAL" = OpenAL
"PoiZone" = PoiZone
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PunkBusterSvc" = PunkBuster Services
"RAR Password Recovery Magic_is1" = RAR Password Recovery Magic v6.1.1.140
"RegCure" = RegCure
"Sawer" = Sawer
"ST6UNST #1" = Need For Speed Most Wanted (Black Edition 1.3) Mega Trainer
"Toxic Biohazard" = Toxic Biohazard
"Uninstall_is1" = Uninstall 1.0.0.1
"Unlocker" = Unlocker 1.9.0
"VLC media player" = VLC media player 1.1.1
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"WinRAR archiver" = WinRAR
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"Xfire" = Xfire (remove only)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"SOE-Clone Wars" = Clone Wars
"UnityWebPlayer" = Unity Web Player
"Warcraft III" = Warcraft III: All Products
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 30.6.2010 10:24:50 | Computer Name = XXX-619471ABCC5 | Source = MPSampleSubmission | ID = 5000
Description =
Error - 30.6.2010 11:16:16 | Computer Name = XXX-619471ABCC5 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace AVSMediaPlayer.exe, verze 3.1.1.172, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 30.6.2010 16:31:56 | Computer Name = XXX-619471ABCC5 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
Error - 1.7.2010 4:50:24 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x4ebf83bd.
Error - 1.7.2010 7:11:34 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul terrainengine.dll,
verze 0.0.0.0, adresa chyby 0x000015ec.
Error - 2.7.2010 6:46:15 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul directinput.dll,
verze 0.0.0.0, adresa chyby 0x000028a4.
Error - 2.7.2010 6:47:01 | Computer Name = XXX-619471ABCC5 | Source = Application Error | ID = 1000
Description = Chybující aplikace wov.exe, verze 7.26.4.0, chybující modul directinput.dll,
verze 0.0.0.0, adresa chyby 0x000028a4.
[ System Events ]
Error - 28.10.2010 8:34:22 | Computer Name = XXX-619471ABCC5 | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA359\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 28.10.2010 8:37:27 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7000
Description = Služba ESET Service neuspěla při spuštění v důsledku následující chyby:
%%3
Error - 28.10.2010 8:37:37 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: ehdrv
Error - 30.10.2010 2:30:37 | Computer Name = XXX-619471ABCC5 | Source = Dhcp | ID = 1001
Description = Počítači nebyla přiřazena síťová adresa (serverem DHCP) pro síťovou
kartu se síťovou adresou 7A7905ACA2ED. Došlo k následující chybě: %%121. Počítač
se bude pokoušet získat síťovou adresu samostatně ze serveru DHCP.
Error - 31.10.2010 3:22:55 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba Ati HotKey Poller byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 31.10.2010 3:22:56 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba FABS - Helping agent for MAGIX media database byla neočekávaně
ukončena. Tento stav nastal již 1krát.
Error - 31.10.2010 3:22:56 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error - 31.10.2010 3:22:57 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 31.10.2010 3:24:49 | Computer Name = XXX-619471ABCC5 | Source = SRService | ID = 104
Description = Proces inicializace nástroje Obnovení systému se nezdařil.
Error - 31.10.2010 3:24:49 | Computer Name = XXX-619471ABCC5 | Source = Service Control Manager | ID = 7023
Description = Služba Služba obnovení systému byla ukončena s následující chybou:
%%2
< End of report >
Pokud máte rádi elektronickou hudbu a nemáte co na práci, můžete si poslechnout mou hudební tvorbu na SoundCloudu.
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43297
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Proces "svchost.exe" vytěžuje PC
D:\Avast!\AvastSvc.exe -- (avast! Web Scanner)
D:\Avast!\AvastSvc.exe -- (avast! Antivirus)
PRC - [2010.09.07 16:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- D:\Avast!\AvastUI.exe
C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
(ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
Plug-in 1.6.0_21)
Napiš co používáš za antivir , dva tam mít nemůžeš!!Jeden odinstaluj a napiš který..to Ti možná vytěžuje CPU..
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
D:\Avast!\AvastSvc.exe -- (avast! Antivirus)
PRC - [2010.09.07 16:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- D:\Avast!\AvastUI.exe
C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
(ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
Plug-in 1.6.0_21)
Napiš co používáš za antivir , dva tam mít nemůžeš!!Jeden odinstaluj a napiš který..to Ti možná vytěžuje CPU..
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - File not found [Kernel | Unknown | Running] -- -- (11242572)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\11242571.sys -- (11242571)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\WINDOWS\System32\AK083E209605E394C.lie
C:\WINDOWS\FIX.reg
C:\WINDOWS\reset.reg
C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D06A4C76
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C
:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Proces "svchost.exe" vytěžuje PC
Tak hele - jako první antivirus jsem měl Microsoft Security Essentials...pak mi známý říkal, že ESET je nejlepši volba a nějak mi ho do PC dostal (mám silné mínění, že to byla nějaká warez verze)...ESET se mi ale neaktualizoval, a protože nešel odinstalovat (bůhví proč), tak jsem ho musel smazat ručně...pak jsem tedy nadále měl MSE, které mi ale zatěžovalo PC, tak jsem ho odinstaloval a nainstaloval jsem místo toho Avast! Antivirus (free verze).
Log OTL:
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Error: No service named 11242572 was found to stop!
Service\Driver key 11242572 not found.
Error: No service named 11242571 was found to stop!
Service\Driver key 11242571 not found.
File C:\WINDOWS\System32\DRIVERS\11242571.sys not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D06A4C76 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C deleted successfully.
File rity] not found.
File ptytemp] not found.
File art explorer] not found.
File boot] not found.
OTL by OldTimer - Version 3.2.17.1 log created on 10312010_103105
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
Log OTL:
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Error: No service named 11242572 was found to stop!
Service\Driver key 11242572 not found.
Error: No service named 11242571 was found to stop!
Service\Driver key 11242571 not found.
File C:\WINDOWS\System32\DRIVERS\11242571.sys not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D06A4C76 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D74B6CF5 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:010ADD2C deleted successfully.
File rity] not found.
File ptytemp] not found.
File art explorer] not found.
File boot] not found.
OTL by OldTimer - Version 3.2.17.1 log created on 10312010_103105
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
Pokud máte rádi elektronickou hudbu a nemáte co na práci, můžete si poslechnout mou hudební tvorbu na SoundCloudu.
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43297
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Proces "svchost.exe" vytěžuje PC
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - [2009.05.14 14:49:26 | 000,055,768 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2009.05.14 14:49:26 | 000,033,096 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2009.05.14 14:49:22 | 000,133,000 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2009.05.14 14:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
:Files
C:\Documents and Settings\admin\Data aplikací\ESET
:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Proces "svchost.exe" vytěžuje PC
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Error: No service named epfwtdi was found to stop!
Service\Driver key epfwtdi not found.
File C:\WINDOWS\system32\drivers\epfwtdi.sys not found.
Error: No service named Epfwndis was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Epfwndis deleted successfully.
File C:\WINDOWS\system32\drivers\epfwndis.sys not found.
Error: No service named epfw was found to stop!
Service\Driver key epfw not found.
File C:\WINDOWS\system32\drivers\epfw.sys not found.
Error: No service named eamon was found to stop!
Service\Driver key eamon not found.
File C:\WINDOWS\system32\drivers\eamon.sys not found.
File rity] not found.
File ptytemp] not found.
File art explorer] not found.
File boot] not found.
OTL by OldTimer - Version 3.2.17.1 log created on 11012010_185631
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Error: No service named epfwtdi was found to stop!
Service\Driver key epfwtdi not found.
File C:\WINDOWS\system32\drivers\epfwtdi.sys not found.
Error: No service named Epfwndis was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Epfwndis deleted successfully.
File C:\WINDOWS\system32\drivers\epfwndis.sys not found.
Error: No service named epfw was found to stop!
Service\Driver key epfw not found.
File C:\WINDOWS\system32\drivers\epfw.sys not found.
Error: No service named eamon was found to stop!
Service\Driver key eamon not found.
File C:\WINDOWS\system32\drivers\eamon.sys not found.
File rity] not found.
File ptytemp] not found.
File art explorer] not found.
File boot] not found.
OTL by OldTimer - Version 3.2.17.1 log created on 11012010_185631
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
Pokud máte rádi elektronickou hudbu a nemáte co na práci, můžete si poslechnout mou hudební tvorbu na SoundCloudu.
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
Případně mě můžete podpořit koupí mých skladeb/EP na iTunes nebo poslechem mé tvorby na Spotify :)
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43297
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Proces "svchost.exe" vytěžuje PC
Spusť OTL a klikni na Vyčisti.
Pak můžeš OTL smazat , C:\_OTL
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Pak můžeš OTL smazat , C:\_OTL
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 30 hostů