Kontrola logu Vyřešeno

[bradto]

OTL - část 1


OTL logfile created on: 2.6.2012 17:27:33 - Run 1
OTL by OldTimer - Version 3.2.45.0 Folder = C:\Users\Tomáš.home-PC\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,95 Gb Available Physical Memory | 65,11% Memory free
6,18 Gb Paging File | 4,93 Gb Available in Paging File | 79,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,04 Gb Total Space | 16,86 Gb Free Space | 35,10% Space Free | Partition Type: NTFS
Drive D: | 175,08 Gb Total Space | 133,81 Gb Free Space | 76,43% Space Free | Partition Type: NTFS

Computer Name: K24008 | User Name: Tomáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Tomáš.home-PC\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe ()
PRC - C:\Program Files\AVG Secure Search\vprot.exe ()
PRC - D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - D:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - D:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Program Files\AVG\AVG9\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - D:\Program Files\PicPick\picpick.exe (NTeWORKS)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgfws9.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSMonitor.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgam.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - D:\Program Files\Svátky a narozeniny\SaN.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\SiteSafety.dll ()
MOD - C:\Program Files\AVG Secure Search\vprot.exe ()
MOD - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\boost_log-vc71-mt-1_32.dll ()
MOD - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\boost_thread-vc71-mt-1_32.dll ()
MOD - D:\Program Files\Svátky a narozeniny\SaN.exe ()


========== Win32 Services (SafeList) ==========

SRV - (vToolbarUpdater11.0.2) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe ()
SRV - (MBAMService) -- D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (Hamachi2Svc) -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (AVG Security Toolbar Service) -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe ()
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (avgfws9) -- C:\Program Files\AVG\AVG9\avgfws9.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg9emc) -- C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (Mcx2Svc) -- C:\Windows\System32\Mcx2Svc.dll (Microsoft Corporation)
SRV - (RemoteAccess) -- C:\Windows\System32\mprdim.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (LMIInfo) -- D:\Program Files\LogMeIn\x86\RaInfo.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (HWiNFO32) -- D:\HWiNFO32\HWiNFO32.SYS File not found
DRV - (EagleXNt) -- C:\Windows\system32\drivers\EagleXNt.sys File not found
DRV - (catchme) -- C:\Users\TOM~1.HOM\AppData\Local\Temp\catchme.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (AvgMfx86) -- C:\Windows\System32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (epmntdrv) -- C:\Windows\System32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\Windows\System32\EuGdiDrv.sys ()
DRV - (appliandMP) -- C:\Windows\System32\drivers\appliand.sys (Applian Technologies Inc.)
DRV - (appliand) -- C:\Windows\System32\drivers\appliand.sys (Applian Technologies Inc.)
DRV - (AvgTdiX) -- C:\Windows\System32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (speedfan) -- C:\Windows\System32\speedfan.sys (Almico Software)
DRV - (sermouse) -- C:\Windows\System32\drivers\sermouse.sys (Microsoft Corporation)
DRV - (AVGIDSShimvtx) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSShim.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSErHrvtx) -- C:\Windows\System32\drivers\AVGIDSvx.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSDrivervtx) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSFiltervtx) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV - (AvgLdx86) -- C:\Windows\System32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgRkx86) -- C:\Windows\System32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgfwfd) -- C:\Windows\System32\drivers\avgfwd6x.sys (AVG Technologies CZ, s.r.o.)
DRV - (LMIRfsClientNP) -- C:\Windows\System32\LMIRfsClientNP.dll (LogMeIn, Inc.)
DRV - (LMIRfsDriver) -- C:\Windows\System32\drivers\LMIRfsDriver.sys (LogMeIn, Inc.)
DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (hwusbdev) -- C:\Windows\System32\drivers\ewusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (Huawei) -- C:\Windows\System32\drivers\ewdcsc.sys (Huawei Tech. Co., Ltd.)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (AtcL001) -- C:\Windows\System32\drivers\l160x86.sys (Atheros Communications, Inc.)
DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC)
DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC)
DRV - (NETw4v32) Ovladač adaptéru Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation)
DRV - (Achernar) -- C:\Windows\System32\drivers\Achernar.sys (NewSoft Technology Corporation)
DRV - (nvstor) -- C:\Windows\System32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) NVIDIA nForce(tm) -- C:\Windows\System32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100)
DRV - (ql2300) -- C:\Windows\System32\drivers\ql2300.sys (QLogic Corporation)
DRV - (adp94xx) -- C:\Windows\System32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\System32\drivers\elxstor.sys (Emulex)
DRV - (adpahci) -- C:\Windows\System32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (uliahci) -- C:\Windows\System32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (iaStorV) -- C:\Windows\System32\drivers\iaStorV.sys (Intel Corporation)
DRV - (pcmcia) -- C:\Windows\System32\drivers\pcmcia.sys (Microsoft Corporation)
DRV - (adpu320) -- C:\Windows\System32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (ulsata2) -- C:\Windows\System32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (vsmraid) -- C:\Windows\System32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ql40xx) -- C:\Windows\System32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\System32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (adpu160m) -- C:\Windows\System32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (isapnp) -- C:\Windows\System32\drivers\isapnp.sys (Microsoft Corporation)
DRV - (nfrd960) -- C:\Windows\System32\drivers\nfrd960.sys (IBM Corporation)
DRV - (msdsm) -- C:\Windows\System32\drivers\msdsm.sys (Microsoft Corporation)
DRV - (iirsp) -- C:\Windows\System32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (TPM) -- C:\Windows\System32\drivers\tpm.sys (Microsoft Corporation)
DRV - (mpio) -- C:\Windows\System32\drivers\mpio.sys (Microsoft Corporation)
DRV - (sbp2port) -- C:\Windows\System32\drivers\sbp2port.sys (Microsoft Corporation)
DRV - (SiSRaid4) -- C:\Windows\System32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (aic78xx) -- C:\Windows\System32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\System32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\System32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (SiSRaid2) -- C:\Windows\System32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (HpCISSs) -- C:\Windows\System32\drivers\HpCISSs.sys (Hewlett-Packard Company)
DRV - (arc) -- C:\Windows\System32\drivers\arc.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\System32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\System32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (LSI_SAS) -- C:\Windows\System32\drivers\lsi_sas.sys (LSI Logic)
DRV - (Symc8xx) -- C:\Windows\System32\drivers\symc8xx.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\System32\drivers\lsi_fc.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\System32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\System32\drivers\Mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\System32\drivers\sym_hi.sys (LSI Logic)
DRV - (megasas) -- C:\Windows\System32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (i2omp) -- C:\Windows\System32\drivers\i2omp.sys (Microsoft Corporation)
DRV - (Wd) -- C:\Windows\System32\drivers\wd.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\System32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\System32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (amdide) -- C:\Windows\System32\drivers\amdide.sys (Microsoft Corporation)
DRV - (aliide) -- C:\Windows\System32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (pciide) -- C:\Windows\System32\drivers\pciide.sys (Microsoft Corporation)
DRV - (rdpdr) -- C:\Windows\System32\drivers\rdpdr.sys (Microsoft Corporation)
DRV - (BTHMODEM) -- C:\Windows\System32\drivers\bthmodem.sys (Microsoft Corporation)
DRV - (HidBth) -- C:\Windows\System32\drivers\hidbth.sys (Microsoft Corporation)
DRV - (usbcir) eHome Infrared Receiver (USBCIR) -- C:\Windows\System32\drivers\usbcir.sys (Microsoft Corporation)
DRV - (circlass) -- C:\Windows\System32\drivers\circlass.sys (Microsoft Corporation)
DRV - (usbohci) -- C:\Windows\System32\drivers\usbohci.sys (Microsoft Corporation)
DRV - (HidIr) -- C:\Windows\System32\drivers\hidir.sys (Microsoft Corporation)
DRV - (WacomPen) -- C:\Windows\System32\drivers\wacompen.sys (Microsoft Corporation)
DRV - (sfloppy) -- C:\Windows\System32\drivers\sfloppy.sys (Microsoft Corporation)
DRV - (fdc) -- C:\Windows\System32\drivers\fdc.sys (Microsoft Corporation)
DRV - (flpydisk) -- C:\Windows\System32\drivers\flpydisk.sys (Microsoft Corporation)
DRV - (Parport) -- C:\Windows\System32\drivers\parport.sys (Microsoft Corporation)
DRV - (IPMIDRV) -- C:\Windows\System32\drivers\IPMIDrv.sys (Microsoft Corporation)
DRV - (WmiAcpi) -- C:\Windows\System32\drivers\wmiacpi.sys (Microsoft Corporation)
DRV - (udfs) -- C:\Windows\System32\drivers\udfs.sys (Microsoft Corporation)
DRV - (ViaC7) -- C:\Windows\System32\drivers\viac7.sys (Microsoft Corporation)
DRV - (AmdK8) -- C:\Windows\System32\drivers\amdk8.sys (Microsoft Corporation)
DRV - (Crusoe) -- C:\Windows\System32\drivers\crusoe.sys (Microsoft Corporation)
DRV - (AmdK7) -- C:\Windows\System32\drivers\amdk7.sys (Microsoft Corporation)
DRV - (Processor) -- C:\Windows\System32\drivers\processr.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\drivers\BrSerId.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) -- C:\Windows\System32\drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\System32\drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
DRV - (ntrigdigi) -- C:\Windows\System32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (giveio) -- C:\Windows\System32\giveio.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/anyvideo2dvd/{DE25B404-313A-4289-8FC4-789E8F44FDEE}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1572363
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=100789&babsrc=SP_ss&mntrId=ec842f460000000000000022159a1cc6
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={D9D89CDD-8E64-4CDC-9408-F39E38FB634E}&mid=a1fd31225f60965beeb589ad780ac4bc-d7c341cf5899f3d9788deae4bc4f32aa3cda2122&lang=cz&ds=AVG&pr=pa&d=2011-12-08 12:43:10&v=10.0.0.7&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/anyvideo2dvd/{DE25B404-313A-4289-8FC4-789E8F44FDEE}?q={searchTerms}
IE - HKCU\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1572363
IE - HKCU\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "ooVoo Video Chat Customized Web Search"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}:6.0.25
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.15.1.22229
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}:7.0.01
FF - prefs.js..extensions.enabledItems: avg@toolbar:11.0.0.9
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.4.4
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: D:\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@eximion.com/KalydoPlayer: C:\Users\Tomáš.home-PC\AppData\Roaming\Kalydo\KalydoPlayer\bin1\npkalydo.dll (Eximion B.V.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tomáš.home-PC\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.05.28 10:47:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.0.0.9\ [2012.04.29 19:57:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.28\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.04.25 19:33:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.28\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.25 19:33:28 | 000,000,000 | ---D | M]

[2011.03.03 12:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions
[2011.03.03 12:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012.03.20 14:50:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions
[2012.03.20 14:50:28 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.04.30 17:51:56 | 000,000,000 | ---D | M] (ooVoo Video Chat Community Toolbar) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}
[2011.04.30 17:51:57 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com
[2012.01.08 14:13:01 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com
[2012.05.14 18:45:40 | 000,000,000 | ---D | M] (MyPlayCity Toolbar) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com
[2011.03.21 15:50:44 | 000,000,935 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\conduit.xml
[2012.05.29 18:40:09 | 000,002,342 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\icq-search.xml
[2012.03.20 14:50:27 | 000,000,168 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\icqplugin.gif
[2012.03.20 14:50:27 | 000,000,618 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\icqplugin.src
[2012.04.22 14:14:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.25 19:33:28 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011.03.11 17:34:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.05.27 07:59:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2011.09.08 13:57:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2012.04.22 14:14:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2011.10.22 18:44:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
[2012.04.29 19:57:40 | 000,000,000 | ---D | M] (AVG Security Toolbar) -- C:\PROGRAMDATA\AVG SECURE SEARCH\11.0.0.9
[2011.05.28 10:47:25 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54}
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\ENGINE@CONDUIT.COM
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\TOOLBAR@ASK.COM
[2012.04.25 19:33:25 | 000,025,048 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2012.04.25 19:33:25 | 000,140,248 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007.04.10 18:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2011.10.22 18:44:19 | 000,611,224 | ---- | M] (Oracle Corporation) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012.04.25 19:33:26 | 000,066,520 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2011.06.06 12:55:30 | 000,183,696 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2011.05.28 10:47:20 | 000,150,712 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2011.05.28 10:47:37 | 000,011,776 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2011.05.28 10:47:17 | 000,105,472 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2012.04.29 19:57:24 | 000,003,766 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012.01.08 14:12:52 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.03.03 19:52:54 | 000,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2011.03.03 19:52:54 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.03.03 19:52:54 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011.03.03 19:52:54 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.03.03 19:52:54 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.03.03 19:52:54 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Local\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Local\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Local\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 7.0.10.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 U1 (Enabled) = D:\bin\new_plugin\npjp2.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Kalydo Player Plugin for Mozilla (Enabled) = C:\Users\Tom\u00E1\u0161.home-PC\AppData\Roaming\Kalydo\KalydoPlayer\bin1\npkalydo.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: Angry Birds = C:\Users\Tomáš.home-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: 3D Bowling = C:\Users\Tomáš.home-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemohgpikgjbgmdfbfjdailocichgbjm\1.9_0\
CHR - Extension: Default = C:\Users\Tomáš.home-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkacjpbfdknhflllbcmjibkdeoafencn\1.1_0\
CHR - Extension: Isoball 3 = C:\Users\Tomáš.home-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.2.1_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Tomáš.home-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.4_0\

O1 HOSTS File: ([2012.06.02 10:22:18 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] D:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [PicPick Start] D:\Program Files\PicPick\picpick.exe (NTeWORKS)
O4 - Startup: C:\Users\Tomáš.home-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Svátky a narozeniny.lnk = D:\Program Files\Svátky a narozeniny\SaN.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Download\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Download\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\NapiNSP.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.1.0)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 94.142.233.120 94.142.233.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF94A5C2-DBB1-4F0B-B2F7-0D7ABCD9194A}: DhcpNameServer = 94.142.233.120 94.142.233.140
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll ()
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img21.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.06.02 17:15:05 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Tomáš.home-PC\Desktop\OTL.exe
[2012.06.02 16:13:57 | 000,000,000 | --SD | C] -- C:\32788R22FWJFW
[2012.06.02 11:29:25 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe
[2012.06.02 10:25:00 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012.06.02 10:11:25 | 004,534,995 | R--- | C] (Swearware) -- C:\Users\Tomáš.home-PC\Desktop\ComboFix.exe
[2012.06.02 08:49:32 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012.06.02 08:18:11 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Local\AVG Secure Search
[2012.06.01 18:49:14 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Malwarebytes
[2012.06.01 18:48:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.06.01 18:48:55 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.05.30 17:59:22 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mikrotik
[2012.05.30 16:21:48 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Rovio
[2012.05.30 16:20:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio
[2012.05.13 17:39:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalendar
[2012.05.13 12:38:07 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\ZJSoftware
[2012.05.13 12:38:07 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Roaming\ZJSoftware
[2012.05.11 19:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DreamBall64
[2012.05.11 15:35:45 | 000,000,000 | ---D | C] -- C:\TP
[2012.05.11 15:35:11 | 000,000,000 | ---D | C] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Turbo Pascal 7.0
[2012.05.11 12:55:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EASEUS Partition Master 9.1.0 Home Edition
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

[Reklama]

[bradto]

OTL - část 2

========== Files - Modified Within 30 Days ==========

[2012.06.02 17:18:13 | 000,000,431 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2012.06.02 17:15:05 | 000,082,395 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.001
[2012.06.02 17:13:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.06.02 17:13:24 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Tomáš.home-PC\Desktop\OTL.exe
[2012.06.02 17:02:21 | 000,082,395 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.dat
[2012.06.02 16:49:00 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1001UA.job
[2012.06.02 16:49:00 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1001Core.job
[2012.06.02 16:41:22 | 000,004,800 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.06.02 16:41:21 | 000,004,800 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.06.02 15:31:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002UA.job
[2012.06.02 14:28:55 | 099,661,699 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2012.06.02 14:24:09 | 3220,430,848 | -HS- | M] () -- C:\hiberfil.sys
[2012.06.02 13:48:01 | 000,001,660 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2012.06.02 10:33:11 | 000,000,512 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\MBR.dat
[2012.06.02 10:31:41 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe
[2012.06.02 10:22:18 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012.06.02 10:02:45 | 000,008,780 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Local\Temp14.html
[2012.06.02 10:02:11 | 000,001,858 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Local\Temp1.html
[2012.06.02 10:01:23 | 000,000,652 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\WhoCrashed.lnk
[2012.06.02 09:11:11 | 000,000,404 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\MiniToolBox.lnk
[2012.06.02 09:10:59 | 000,000,401 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\HiJackThis.lnk
[2012.06.02 09:10:37 | 000,000,404 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\ATF-Cleaner.lnk
[2012.06.02 08:47:56 | 004,534,995 | R--- | M] (Swearware) -- C:\Users\Tomáš.home-PC\Desktop\ComboFix.exe
[2012.06.02 08:22:15 | 000,000,710 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\MbAM.lnk
[2012.06.01 00:00:38 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\NeroLiveEpgUpdate-K24008_Tomáš.job
[2012.05.31 19:40:02 | 000,002,675 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Microsoft Office Word 2007.lnk
[2012.05.31 17:09:59 | 001,079,271 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\zoo mumba (lenka).jpg
[2012.05.31 16:53:53 | 000,668,775 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\zoo mumba.jpg
[2012.05.31 16:31:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002Core.job
[2012.05.31 16:13:55 | 004,378,624 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\trouby a hadice.mp4
[2012.05.31 14:37:03 | 000,180,577 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\seznam.jpg
[2012.05.31 14:19:14 | 000,062,077 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\divoke kmeny.jpg
[2012.05.30 16:21:24 | 000,000,749 | ---- | M] () -- C:\Users\Public\Desktop\Angry Birds.lnk
[2012.05.28 22:12:06 | 000,625,911 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavifw.avm
[2012.05.27 10:09:53 | 000,000,969 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Nový textový dokument – zástupce.lnk
[2012.05.24 13:45:37 | 000,002,118 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Google Chrome.lnk
[2012.05.17 22:26:03 | 000,000,481 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Divoké kmeny.lnk
[2012.05.17 16:14:18 | 000,002,589 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Microsoft Office Excel 2007.lnk
[2012.05.13 18:13:50 | 001,107,011 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\pomoc poskytovatele.jpg
[2012.05.13 18:13:35 | 001,037,163 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\zařízení funguje správně.jpg
[2012.05.12 11:28:45 | 000,610,142 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.05.12 11:28:45 | 000,473,598 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.05.12 11:28:45 | 000,103,924 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.05.12 11:28:45 | 000,081,404 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.05.11 13:06:34 | 000,023,647 | ---- | M] () -- C:\Users\Tomáš.home-PC\disky.jpg
[2012.05.11 13:02:56 | 000,362,014 | ---- | M] () -- C:\Users\Tomáš.home-PC\DISK C.jpg
[2012.05.11 13:02:46 | 000,372,936 | ---- | M] () -- C:\Users\Tomáš.home-PC\DISK D.jpg
[2012.05.04 15:02:50 | 000,635,616 | ---- | M] () -- C:\Users\Tomáš.home-PC\147 users.jpg
[2012.05.03 19:38:44 | 000,015,397 | ---- | M] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\acer aspire one 722.odt
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.06.02 10:33:11 | 000,000,512 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\MBR.dat
[2012.06.02 10:02:45 | 000,008,780 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Local\Temp14.html
[2012.06.02 10:01:25 | 000,001,858 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Local\Temp1.html
[2012.06.02 10:01:23 | 000,000,652 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\WhoCrashed.lnk
[2012.06.02 09:11:11 | 000,000,404 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\MiniToolBox.lnk
[2012.06.02 09:10:59 | 000,000,401 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\HiJackThis.lnk
[2012.06.02 09:10:37 | 000,000,404 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\ATF-Cleaner.lnk
[2012.06.02 08:22:15 | 000,000,710 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\MbAM.lnk
[2012.05.31 16:59:00 | 001,079,271 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\zoo mumba (lenka).jpg
[2012.05.31 16:53:53 | 000,668,775 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\zoo mumba.jpg
[2012.05.31 14:37:03 | 000,180,577 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\seznam.jpg
[2012.05.31 14:19:14 | 000,062,077 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\divoke kmeny.jpg
[2012.05.30 16:21:24 | 000,000,749 | ---- | C] () -- C:\Users\Public\Desktop\Angry Birds.lnk
[2012.05.27 10:09:53 | 000,000,969 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\Nový textový dokument – zástupce.lnk
[2012.05.17 22:26:03 | 000,000,481 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\Divoké kmeny.lnk
[2012.05.13 18:13:49 | 001,107,011 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\pomoc poskytovatele.jpg
[2012.05.13 18:13:35 | 001,037,163 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\zařízení funguje správně.jpg
[2012.05.11 13:06:34 | 000,023,647 | ---- | C] () -- C:\Users\Tomáš.home-PC\disky.jpg
[2012.05.11 13:02:55 | 000,362,014 | ---- | C] () -- C:\Users\Tomáš.home-PC\DISK C.jpg
[2012.05.11 13:02:46 | 000,372,936 | ---- | C] () -- C:\Users\Tomáš.home-PC\DISK D.jpg
[2012.05.11 12:55:20 | 002,469,760 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2012.05.11 12:55:20 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2012.05.11 12:55:20 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2012.05.11 12:55:20 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2012.05.11 12:55:20 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2012.05.04 15:02:50 | 000,635,616 | ---- | C] () -- C:\Users\Tomáš.home-PC\147 users.jpg
[2012.05.03 19:38:42 | 000,015,397 | ---- | C] () -- C:\Users\Tomáš.home-PC\Desktop\Dokumenty\acer aspire one 722.odt
[2011.05.29 10:12:42 | 000,122,880 | ---- | C] () -- C:\Windows\System32\Nsvideo.dll
[2011.05.25 00:44:26 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011.05.18 21:36:23 | 000,004,096 | -H-- | C] () -- C:\Users\Tomáš.home-PC\AppData\Local\keyfile3.drm
[2011.04.04 18:37:15 | 000,086,868 | ---- | C] () -- C:\Windows\SSZIP.EXE
[2011.04.04 18:37:14 | 000,037,888 | ---- | C] () -- C:\Windows\SSETFX.EXE
[2011.04.04 18:37:13 | 000,000,065 | ---- | C] () -- C:\Windows\DUMMY.INI
[2011.04.04 16:06:59 | 000,072,192 | ---- | C] () -- C:\Windows\unlite3.exe
[2011.04.04 16:06:51 | 000,777,728 | ---- | C] () -- C:\Windows\System32\Sslsvc.dll
[2011.04.04 16:06:51 | 000,069,632 | ---- | C] () -- C:\Windows\System32\xmltok.dll
[2011.04.04 16:06:51 | 000,040,960 | ---- | C] () -- C:\Windows\System32\cfmsg.dll
[2011.04.04 16:06:51 | 000,036,864 | ---- | C] () -- C:\Windows\System32\xmlparse.dll
[2011.03.29 20:08:07 | 000,000,012 | ---- | C] () -- C:\Windows\muUpdate.dat
[2011.03.04 15:07:54 | 000,000,162 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\default.rss
[2011.03.04 14:25:51 | 000,026,340 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\UserTile.png
[2011.03.04 11:56:36 | 000,001,660 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2011.03.03 21:20:58 | 000,082,395 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.001
[2011.03.03 19:37:00 | 000,095,744 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.03.03 19:18:34 | 000,082,395 | ---- | C] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.dat
[2011.03.03 15:05:43 | 004,245,008 | ---- | C] () -- C:\Windows\System32\qtp-mt334.dll
[2011.03.03 15:05:43 | 000,247,824 | ---- | C] () -- C:\Windows\System32\prgiso.dll
[2011.03.03 15:05:43 | 000,013,840 | ---- | C] () -- C:\Windows\System32\wnaspi32.dll
[2011.03.01 19:29:52 | 000,473,598 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2011.03.01 19:29:52 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2011.03.01 19:29:52 | 000,081,404 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2011.03.01 19:29:52 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2011.03.01 14:36:03 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2011.02.10 17:51:58 | 003,075,072 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2010.12.29 02:23:14 | 000,079,360 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010.06.23 12:35:52 | 000,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010.06.23 12:35:52 | 000,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll

========== LOP Check ==========

[2011.10.24 17:19:07 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\.minecraft
[2011.11.10 17:00:52 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Ancestry
[2011.05.04 20:13:36 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\AVG9
[2012.01.08 14:12:50 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Babylon
[2011.07.09 21:58:43 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\EleFun Games
[2011.06.01 18:32:32 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\FriendsGamesNetwork
[2012.03.20 22:37:20 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\ICQ
[2011.10.25 18:05:21 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Jasc
[2012.04.22 14:13:43 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Kalydo
[2012.05.30 17:59:22 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mikrotik
[2011.04.30 17:52:05 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\ooVoo Details
[2011.10.23 12:09:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\OpenOffice.org
[2011.03.04 14:25:51 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\PeerNetworking
[2012.01.08 14:13:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\picpick
[2012.03.03 19:31:56 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Replay Media Catcher 4
[2012.05.30 16:21:48 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Rovio
[2011.03.04 15:07:26 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Solveig Multimedia
[2011.05.20 15:03:49 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Sony
[2011.05.05 18:50:27 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\TeamViewer
[2011.07.01 11:57:44 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\Telefónica Móviles
[2011.03.04 21:17:58 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\VistaCodecs
[2011.04.03 11:34:30 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\WellCraftedWhiteBoard
[2012.05.13 12:41:25 | 000,000,000 | ---D | M] -- C:\Users\Tomáš.home-PC\AppData\Roaming\ZJSoftware
[2012.06.02 13:48:03 | 000,032,586 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2011.05.22 19:13:21 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ
[2011.05.22 19:13:21 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Tomáš.home-PC\Desktop\trouby a hadice.mp4:TOC.WMV

< End of report >

[bradto]

OTL - Extras


OTL Extras logfile created on: 2.6.2012 17:27:33 - Run 1
OTL by OldTimer - Version 3.2.45.0 Folder = C:\Users\Tomáš.home-PC\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,95 Gb Available Physical Memory | 65,11% Memory free
6,18 Gb Paging File | 4,93 Gb Available in Paging File | 79,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,04 Gb Total Space | 16,86 Gb Free Space | 35,10% Space Free | Partition Type: NTFS
Drive D: | 175,08 Gb Total Space | 133,81 Gb Free Space | 76,43% Space Free | Partition Type: NTFS

Computer Name: K24008 | User Name: Tomáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-137406973-2292173746-1134626766-1001]
"EnableNotificationsRef" = 2
"EnableNotifications" = 0

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{066EA436-0A8D-4924-8337-9498F18DBE21}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{0F2E2E8E-4424-46D0-A3D5-56C0B1E1B5F5}" = lport=139 | protocol=6 | dir=in | app=system |
"{107064A3-592E-44A8-9036-E662DF7262E9}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{110C8621-771E-4E53-9A5C-52E5FF7E4E5B}" = rport=2869 | protocol=6 | dir=out | app=system |
"{1E301689-7304-4DFB-AA46-693CCEDA3019}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{21B39B73-A2E0-47B3-8D0B-6F00051FFFDF}" = lport=445 | protocol=6 | dir=in | app=system |
"{25C5CE53-6CDC-4840-A702-B12C76E44106}" = lport=138 | protocol=17 | dir=in | app=system |
"{3263A0D2-8A60-4B75-A4B8-2D88D8BF521F}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{3669E883-EAA3-42AE-B627-8D05670C86F1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3C0C2CC1-4E75-405F-965B-764CC15ADFF2}" = rport=445 | protocol=6 | dir=out | app=system |
"{3DB36107-6846-4B4D-AED6-63E2B375A73A}" = rport=138 | protocol=17 | dir=out | app=system |
"{3FDBB3C9-A505-4454-8A6B-0AB59F1F10B0}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{4AE49B91-3185-4FE7-98E4-9982D27A15DA}" = lport=137 | protocol=17 | dir=in | app=system |
"{7403D3AE-DF75-4095-8F89-08846CD8FA83}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7F02763A-6751-4313-8162-9ED2D2CF73D7}" = rport=137 | protocol=17 | dir=out | app=system |
"{8BAC1C49-0AA0-4850-9431-A96E4DDB3D8B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{931B785A-CE5D-4D3D-B781-27DD3A39239E}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{B3FCDF62-D938-4453-B145-03C991D5705E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C046C399-C691-499D-AEDC-A7D8BE09242B}" = rport=139 | protocol=6 | dir=out | app=system |
"{C77FC7AA-9239-4A79-998B-15DDAB10C1DF}" = lport=2869 | protocol=6 | dir=in | app=system |
"{CED67838-FEF9-46E9-A2A2-F04CA90BC1E8}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{FA7A5C1A-1626-443B-8864-7E90F4AB8471}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{66004334-5A90-470D-9252-71DAFD643850}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{8B4D093D-A99D-44B5-8B44-A2B302BCEABD}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{8E90FABF-E49C-40EB-9E65-4B7B49E8E217}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B84CA3B2-AA6E-48A6-84D0-BD9D73EDDB8F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{D02BB81B-1CF5-4731-98B8-ED253171FD59}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D6B2B995-7438-4696-AABB-957C386B79CD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E35991F6-4A65-4534-99B7-B49E19B6921F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{FAC60BFE-6B5F-4A32-8412-652F0AD91241}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03eb4384-e6f2-492b-ba42-a7121a700f31}" = Nero 9
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07D20D73-A857-47D0-8804-CA5771903DA4}" = IconDeveloper
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{174D5678-D941-433C-BD23-58A5C7B0D36D}" = Jasc Animation Shop 3
"{180CAD6C-B0ED-42A9-8C4A-CF49C6682A06}_is1" = Free Screen Video Capture by Topviewsoft 4.1.7
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1DA75811-6C2C-ABFA-7DBF-9B9EDAA005E3}" = ATI Catalyst Install Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217001FF}" = Java(TM) 7 Update 1
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{2EE90F26-20B3-4423-81DE-E57E5D2E4FEF}" = Zoner GIF Animator 5
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{49CC1A6A-3A1A-4EE7-913F-8106B51B59D1}" = Paragon Partition Manager 8.5 Personal Demo
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7426428E-71D4-452C-BA13-B14E5EB52859}" = WeatherBug Alert
"{74307C3F-EBD4-11D4-A4D9-0010A4C3AFF0}" = Macromedia HomeSite 5
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = MyPlayCity Toolbar
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A4DE6DF0-5D88-4931-8F24-6ED39557097C}_is1" = DreamBall64 version 1.03
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Czech
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{C314764F-2C47-44DA-BE37-F48BB7322BE4}_is1" = Screen Video Recorder 1.5
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0
"{E2494AD8-314D-44F8-B39C-4358A60DC184}" = LogMeIn Hamachi
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{E9A45042-3F22-46BD-85EB-BE53812B3534}" = Presto! VideoWorks 6
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{F0000C3B-FD74-4E5F-B574-CA4AB150E86F}" = Angry Birds
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}" = Vista Codec Package
"{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}" = ooVoo
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AC Tool" = AC Tool
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AVG9Uninstall" = AVG 9.0
"Cake Shop 2_is1" = Cake Shop 2
"CCleaner" = CCleaner
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.0 Home Edition
"EasyLex2" = Lingea EasyLex 2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"Fraps" = Fraps
"HyperCam 3" = HyperCam 3
"Install Creator" = Install Creator
"Kalendar" = Kalendář
"Kalendář_is1" = Kalendář v0.1.21
"kruh-kruznice 1.0.2.0_is1" = kruh-kruznice version 1.0.2.0
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.61.0.1400
"Mozilla Firefox (3.6.28)" = Mozilla Firefox (3.6.28)
"NosTale(CZ)_is1" = Nostale(CZ)
"NVIDIA Drivers" = NVIDIA Drivers
"PhotoFilter" = PhotoFilter
"PicPick" = PicPick
"Ptačí město" = Ptačí město
"RealPlayer 12.0" = RealPlayer
"Replay Media Catcher 4" = Replay Media Catcher 4 (4.3.2)
"Room Arranger" = Room Arranger
"SpeedFan" = SpeedFan (remove only)
"Svátky a narozeniny_is1" = Svátky a narozeniny 2.0.2
"TopStyle Lite (Version 3.0)" = TopStyle Lite (Version 3.0)
"Účtovník" = Účtovník
"VidShot Capturer_is1" = VidShot Capturer
"WhiteBoard" = WhiteBoard 2.0
"WhoCrashed_is1" = WhoCrashed 3.04
"WinGimp-2.0_is1" = GIMP 2.6.11

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = MyPlayCity Toolbar Updater
"Google Chrome" = Google Chrome
"Google Chrome Frame" = Google Chrome Frame
"IconDeveloper" = IconDeveloper
"Kalydo App Nostale" = Nostale
"KalydoPlayer" = Kalydo Player 4.06.00
"UnityWebPlayer" = Unity Web Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 31.5.2012 10:35:37 | Computer Name = K24008 | Source = EventSystem | ID = 4622
Description =

Error - 31.5.2012 11:45:33 | Computer Name = K24008 | Source = Application Error | ID = 1000
Description = Chybující aplikace Explorer.EXE, verze 6.0.6000.16771, časové razítko
0x4907deda, chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000,
kód výjimky 0xc0000005, posun chyby 0x00000000, ID procesu 0x80c, čas spuštění aplikace
0x01cd3f3adf414027.

Error - 31.5.2012 16:11:30 | Computer Name = K24008 | Source = Application Hang | ID = 1002
Description = Program chrome.exe verze 19.0.1084.52 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: 1548 Čas zahájení: 01cd3f67568fabd0 Čas ukončení: 6

Error - 31.5.2012 16:27:45 | Computer Name = K24008 | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro D:\Program Files\kruh-kruznice\kruh-kruznice.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.6.2012 0:41:12 | Computer Name = K24008 | Source = EventSystem | ID = 4622
Description =

Error - 2.6.2012 2:17:33 | Computer Name = K24008 | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro D:\Program Files\kruh-kruznice\kruh-kruznice.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 2.6.2012 8:24:59 | Computer Name = K24008 | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro D:\Program Files\kruh-kruznice\kruh-kruznice.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 2.6.2012 9:15:22 | Computer Name = K24008 | Source = EventSystem | ID = 4621
Description =

Error - 2.6.2012 10:42:08 | Computer Name = K24008 | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro D:\Program Files\kruh-kruznice\kruh-kruznice.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 2.6.2012 10:42:08 | Computer Name = K24008 | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro D:\Program Files\kruh-kruznice\kruh-kruznice.exe
se nezdařilo. Závislé sestavení Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

[ System Events ]
Error - 2.6.2012 11:05:44 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:06:09 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:12:11 | Computer Name = K24008 | Source = ipnathlp | ID = 31004
Description = Agent serveru proxy služby DNS nemohl přidělit 0 bajtů paměti. To
může znamenat, že tento systém má nedostatek virtuální paměti nebo že správce paměti
zjistil vnitřní chybu.

Error - 2.6.2012 11:13:20 | Computer Name = K24008 | Source = Service Control Manager | ID = 7011
Description =

Error - 2.6.2012 11:13:44 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:17:48 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:18:13 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:24:16 | Computer Name = K24008 | Source = ipnathlp | ID = 31004
Description = Agent serveru proxy služby DNS nemohl přidělit 0 bajtů paměti. To
může znamenat, že tento systém má nedostatek virtuální paměti nebo že správce paměti
zjistil vnitřní chybu.

Error - 2.6.2012 11:29:54 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.

Error - 2.6.2012 11:30:18 | Computer Name = K24008 | Source = ipnathlp | ID = 30013
Description = Přidělování DHCP bylo automaticky vypnuto u adresy IP 192.168.2.3,
protože tato adresa nepatří do oboru 192.168.0.0/255.255.255.0, ze kterého jsou
přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této adresy IP zapnout,
změňte obor tak, aby tuto adresu IP zahrnoval, nebo změňte adresu IP tak, aby patřila
do oboru.


< End of report >

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (LMIInfo) -- D:\Program Files\LogMeIn\x86\RaInfo.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (HWiNFO32) -- D:\HWiNFO32\HWiNFO32.SYS File not found
DRV - (EagleXNt) -- C:\Windows\system32\drivers\EagleXNt.sys File not found
DRV - (catchme) -- C:\Users\TOM~1.HOM\AppData\Local\Temp\catchme.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1572363
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=100789&babsrc=SP_ss&mntrId=ec842f460000000000000022159a1cc6
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={D9D89CDD-8E64-4CDC-9408-F39E38FB634E}&mid=a1fd31225f60965beeb589ad780ac4bc-
d7c341cf5899f3d9788deae4bc4f32aa3cda2122&lang=cz&ds=AVG&pr=pa&d=2011-12-08 12:43:10&v=10.0.0.7&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/anyvideo2dvd/{DE25B404-313A-4289-8FC4-789E8F44FDEE}?q={searchTerms}
IE - HKCU\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1572363
IE - HKCU\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "ooVoo Video Chat Customized Web Search"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}:6.0.25
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.15.1.22229
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}:7.0.01
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.4.4
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
[2011.03.03 12:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions
[2011.03.03 12:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012.03.20 14:50:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions
[2012.03.20 14:50:28 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.04.30 17:51:56 | 000,000,000 | ---D | M] (ooVoo Video Chat Community Toolbar) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}
[2011.04.30 17:51:57 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com
[2012.01.08 14:13:01 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com
[2012.05.14 18:45:40 | 000,000,000 | ---D | M] (MyPlayCity Toolbar) -- C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com
[2011.03.21 15:50:44 | 000,000,935 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\conduit.xml
[2012.05.29 18:40:09 | 000,002,342 | ---- | M] () -- C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\icq-search.xml
[2012.04.22 14:14:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.03.11 17:34:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.05.27 07:59:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2011.09.08 13:57:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2012.04.22 14:14:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2011.10.22 18:44:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54}
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\ENGINE@CONDUIT.COM
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM
File not found (No name found) -- C:\USERS\TOMáš.HOME-PC\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MSLBNEPO.DEFAULT\EXTENSIONS\TOOLBAR@ASK.COM
O1 HOSTS File: ([2012.06.02 10:22:18 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
[2012.05.12 11:28:45 | 000,610,142 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.05.12 11:28:45 | 000,473,598 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.05.12 11:28:45 | 000,103,924 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.05.12 11:28:45 | 000,081,404 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.03.01 19:29:52 | 000,473,598 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2011.03.01 19:29:52 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2011.03.01 19:29:52 | 000,081,404 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2011.03.01 19:29:52 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\32788R22FWJFW
C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe
C:\Users\Tomáš.home-PC\Desktop\ComboFix.exe
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
C:\Windows\System32\drivers\etc\hosts.ics
C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.001
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002UA.job
C:\Windows\bthservsdp.dat
C:\Users\Tomáš.home-PC\Desktop\MBR.dat
C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe
C:\Users\Tomáš.home-PC\AppData\Local\Temp14.html
C:\Users\Tomáš.home-PC\AppData\Local\Temp1.html
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002Core.job
C:\Users\Tomáš.home-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Tomáš.home-PC\AppData\Roaming\Babylon
[2011.05.22 19:13:21 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ
[2011.05.22 19:13:21 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ
ipconfig /flushdns /c

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command]
""=""%1" %*"

:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\System32\Nsvideo.dll
C:\Windows\SSZIP.EXE
C:\Windows\SSETFX.EXE
C:\Windows\DUMMY.INI
C:\Windows\unlite3.exe
C:\Windows\System32\Sslsvc.dll
C:\Windows\muUpdate.dat

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo:
http://www.virscan.org/

[bradto]

Zatím log z OTL - ostatní dodám


All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File system32\DRIVERS\nwlnkfwd.sys File not found not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File system32\DRIVERS\nwlnkflt.sys File not found not found.
Service LMIInfo stopped successfully!
Service LMIInfo deleted successfully!
File D:\Program Files\LogMeIn\x86\RaInfo.sys File not found not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File system32\DRIVERS\ipinip.sys File not found not found.
Service HWiNFO32 stopped successfully!
Service HWiNFO32 deleted successfully!
File D:\HWiNFO32\HWiNFO32.SYS File not found not found.
Service EagleXNt stopped successfully!
Service EagleXNt deleted successfully!
File C:\Windows\system32\drivers\EagleXNt.sys File not found not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\TOM~1.HOM\AppData\Local\Temp\catchme.sys File not found not found.
Service blbdrive stopped successfully!
Service blbdrive deleted successfully!
File C:\Windows\system32\drivers\blbdrive.sys File not found not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Prefs.js: "Search the web (Babylon)" removed from browser.search.defaultenginename
Prefs.js: "ooVoo Video Chat Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "Search the web (Babylon)" removed from browser.search.order.1
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Prefs.js: engine@conduit.com:3.3.3.2 removed from extensions.enabledItems
Prefs.js: {e5a1e26f-0d1d-4307-868f-fbd9a374ab54}:3.3.3.2 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}:6.0.25 removed from extensions.enabledItems
Prefs.js: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3 removed from extensions.enabledItems
Prefs.js: toolbar@ask.com:3.15.1.22229 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}:7.0.01 removed from extensions.enabledItems
Prefs.js: ffxtlbr@babylon.com:1.2.0 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31 removed from extensions.enabledItems
Prefs.js: {800b5000-a755-47e1-992b-48a1c1357f07}:1.4.4 removed from extensions.enabledItems
Prefs.js: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28 removed from extensions.enabledItems
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Users\Tomáš.home-PC\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions folder moved successfully.
Folder C:\Users\Tomáš\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\ not found.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\searchplugin folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\META-INF folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\lib folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\defaults folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\components folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\chrome folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54} folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\searchplugins folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\logs folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\defaults folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\datastore folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-13-Oct-2011-15-34-05-GMT folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-24-Jul-2011-13-28-58-GMT folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-13-Aug-2011-06-34-29-GMT folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-16-Jan-2012-15-52-01-GMT folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-14-Nov-2011-14-37-32-GMT folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\temp folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome\content folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\chrome folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\content\imgs folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\content folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\components folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\searchplugin folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\META-INF folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\lib folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\DualPackage folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\defaults folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\components folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\chrome folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com folder moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions folder moved successfully.
Folder C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\ not found.
Folder C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\{e5a1e26f-0d1d-4307-868f-fbd9a374ab54}\ not found.
Folder C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\engine@conduit.com\ not found.
Folder C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\ffxtlbr@babylon.com\ not found.
Folder C:\Users\Tomáš.home-PC\AppData\Roaming\mozilla\Firefox\Profiles\mslbnepo.default\extensions\toolbar@ask.com\ not found.
C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\conduit.xml moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\mslbnepo.default\searchplugins\icq-search.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Folder C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Folder C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ not found.
Folder C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}\ not found.
Folder C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Folder C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}\ not found.
127.0.0.1 localhost removed from HOSTS file successfully
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DontDisplayLogonHoursWarnings deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
C:\Windows\System32\perfh009.dat moved successfully.
C:\Windows\System32\perfh005.dat moved successfully.
C:\Windows\System32\perfc009.dat moved successfully.
C:\Windows\System32\perfc005.dat moved successfully.
File C:\Windows\System32\perfh005.dat not found.
C:\Windows\System32\perfi005.dat moved successfully.
File C:\Windows\System32\perfc005.dat not found.
C:\Windows\System32\perfd005.dat moved successfully.
========== FILES ==========
C:\WINDOWS\System32\RENA281.tmp moved successfully.
C:\WINDOWS\System32\RENA282.tmp moved successfully.
C:\WINDOWS\System32\RENA283.tmp moved successfully.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1001Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1001UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002UA.job moved successfully.
c:\windows\Tasks\NeroLiveEpgUpdate-K24008_Tomáš.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\32788R22FWJFW folder moved successfully.
C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe moved successfully.
C:\Users\Tomáš.home-PC\Desktop\ComboFix.exe moved successfully.
File\Folder [3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] not found.
C:\Windows\System32\drivers\etc\hosts.ics moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\nvModes.001 moved successfully.
File\Folder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002UA.job not found.
C:\Windows\bthservsdp.dat moved successfully.
C:\Users\Tomáš.home-PC\Desktop\MBR.dat moved successfully.
File\Folder C:\Users\Tomáš.home-PC\Desktop\aswMBR.exe not found.
C:\Users\Tomáš.home-PC\AppData\Local\Temp14.html moved successfully.
C:\Users\Tomáš.home-PC\AppData\Local\Temp1.html moved successfully.
File\Folder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-137406973-2292173746-1134626766-1002Core.job not found.
C:\Users\Tomáš.home-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Users\Tomáš.home-PC\AppData\Roaming\Babylon folder moved successfully.
File\Folder [2011.05.22 19:13:21 | 000,000,036 | ---- | M] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ not found.
File\Folder [2011.05.22 19:13:21 | 000,000,036 | ---- | C] ()(C:\Windows\System32\?') -- C:\Windows\System32\Ⱐʹ not found.
< ipconfig /flushdns /c >
No captured output from command...
C:\Users\Tomáš.home-PC\Desktop\cmd.bat deleted successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command\\""|""%1" %*" /E : value set successfully!
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Anna
->Temp folder emptied: 171812 bytes
->Temporary Internet Files folder emptied: 51077619 bytes
->Java cache emptied: 131744 bytes
->FireFox cache emptied: 104758182 bytes
->Google Chrome cache emptied: 298808477 bytes
->Flash cache emptied: 9417 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Lenka
->Temp folder emptied: 363794 bytes
->Temporary Internet Files folder emptied: 24201680 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 93579048 bytes
->Google Chrome cache emptied: 230092525 bytes
->Flash cache emptied: 12942 bytes

User: Public
->Temp folder emptied: 0 bytes

User: TOM~1~HOM
->Temp folder emptied: 0 bytes

User: Tomáš
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 47000184 bytes
->FireFox cache emptied: 20483304 bytes
->Flash cache emptied: 2590 bytes

User: Tomáš.home-PC
->Temp folder emptied: 611860 bytes
->Temporary Internet Files folder emptied: 56348594 bytes
->Java cache emptied: 6633110 bytes
->FireFox cache emptied: 81215988 bytes
->Google Chrome cache emptied: 162895048 bytes
->Flash cache emptied: 1508 bytes

User: Vláďa
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 8525396 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 90169608 bytes
->Flash cache emptied: 6434 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3203752 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 221,00 mb


[EMPTYFLASH]

User: All Users

User: Anna
->Flash cache emptied: 0 bytes

User: Default

User: Default User

User: Guest

User: Lenka
->Flash cache emptied: 0 bytes

User: Public

User: TOM~1~HOM

User: Tomáš
->Flash cache emptied: 0 bytes

User: Tomáš.home-PC
->Flash cache emptied: 0 bytes

User: Vláďa
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.45.0 log created on 06032012_085003

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

[bradto]

Log z TDSSKiller


09:11:57.0667 5380 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
09:11:57.0854 5380 ============================================================
09:11:57.0854 5380 Current date / time: 2012/06/03 09:11:57.0854
09:11:57.0854 5380 SystemInfo:
09:11:57.0854 5380
09:11:57.0854 5380 OS Version: 6.0.6000 ServicePack: 0.0
09:11:57.0854 5380 Product type: Workstation
09:11:57.0854 5380 ComputerName: K24008
09:11:57.0854 5380 UserName: Tomáš
09:11:57.0854 5380 Windows directory: C:\Windows
09:11:57.0854 5380 System windows directory: C:\Windows
09:11:57.0854 5380 Processor architecture: Intel x86
09:11:57.0854 5380 Number of processors: 2
09:11:57.0854 5380 Page size: 0x1000
09:11:57.0854 5380 Boot type: Normal boot
09:11:57.0854 5380 ============================================================
09:11:59.0305 5380 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x764A9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000050
09:11:59.0305 5380 ============================================================
09:11:59.0305 5380 \Device\Harddisk0\DR0:
09:11:59.0305 5380 MBR partitions:
09:11:59.0305 5380 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x6015EF0
09:11:59.0305 5380 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x739E6F0, BlocksNum 0x15E26A80
09:11:59.0305 5380 ============================================================
09:11:59.0336 5380 C: <-> \Device\Harddisk0\DR0\Partition0
09:11:59.0586 5380 D: <-> \Device\Harddisk0\DR0\Partition1
09:11:59.0586 5380 ============================================================
09:11:59.0586 5380 Initialize success
09:11:59.0586 5380 ============================================================
09:12:03.0501 4724 ============================================================
09:12:03.0501 4724 Scan started
09:12:03.0501 4724 Mode: Manual;
09:12:03.0501 4724 ============================================================
09:12:04.0515 4724 Achernar (f8e916dd0de892a3bd9f6cc686100960) C:\Windows\system32\Drivers\Achernar.sys
09:12:04.0515 4724 Achernar - ok
09:12:04.0562 4724 ACPI (84fc6df81212d16be5c4f441682feccc) C:\Windows\system32\drivers\acpi.sys
09:12:04.0562 4724 ACPI - ok
09:12:04.0749 4724 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
09:12:04.0749 4724 AdobeARMservice - ok
09:12:04.0843 4724 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
09:12:04.0843 4724 adp94xx - ok
09:12:04.0874 4724 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
09:12:04.0874 4724 adpahci - ok
09:12:04.0905 4724 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
09:12:04.0905 4724 adpu160m - ok
09:12:04.0921 4724 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
09:12:04.0921 4724 adpu320 - ok
09:12:04.0999 4724 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
09:12:04.0999 4724 AeLookupSvc - ok
09:12:05.0092 4724 AFD (5d24caf8efd924a875698ff28384db8b) C:\Windows\system32\drivers\afd.sys
09:12:05.0092 4724 AFD - ok
09:12:05.0124 4724 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
09:12:05.0124 4724 agp440 - ok
09:12:05.0155 4724 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
09:12:05.0155 4724 aic78xx - ok
09:12:05.0186 4724 ALG (e69fb0e3112c40fdc0ef7d21a52dc951) C:\Windows\System32\alg.exe
09:12:05.0186 4724 ALG - ok
09:12:05.0233 4724 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
09:12:05.0233 4724 aliide - ok
09:12:05.0311 4724 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
09:12:05.0311 4724 amdagp - ok
09:12:05.0326 4724 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
09:12:05.0326 4724 amdide - ok
09:12:05.0342 4724 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
09:12:05.0342 4724 AmdK7 - ok
09:12:05.0358 4724 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
09:12:05.0358 4724 AmdK8 - ok
09:12:05.0451 4724 Appinfo (cfa455816879f06f1c4e5bbf9e8aef7d) C:\Windows\System32\appinfo.dll
09:12:05.0451 4724 Appinfo - ok
09:12:05.0607 4724 appliand (69370f2e2827ffba910d0bfa9e62e484) C:\Windows\system32\DRIVERS\appliand.sys
09:12:05.0607 4724 appliand - ok
09:12:05.0670 4724 appliandMP (69370f2e2827ffba910d0bfa9e62e484) C:\Windows\system32\DRIVERS\appliand.sys
09:12:05.0670 4724 appliandMP - ok
09:12:05.0857 4724 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
09:12:05.0857 4724 arc - ok
09:12:05.0904 4724 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
09:12:05.0904 4724 arcsas - ok
09:12:05.0935 4724 AsyncMac (e86cf7ce67d5de898f27ef884dc357d8) C:\Windows\system32\DRIVERS\asyncmac.sys
09:12:05.0935 4724 AsyncMac - ok
09:12:05.0982 4724 atapi (b35cfcef838382ab6490b321c87edf17) C:\Windows\system32\drivers\atapi.sys
09:12:05.0982 4724 atapi - ok
09:12:06.0091 4724 AtcL001 (b536be46c769c97ccb736ed8fdd4393c) C:\Windows\system32\DRIVERS\l160x86.sys
09:12:06.0091 4724 AtcL001 - ok
09:12:06.0216 4724 AudioEndpointBuilder (e760fc1bd68f7f6f1b17eb4e8d9480b0) C:\Windows\System32\Audiosrv.dll
09:12:06.0216 4724 AudioEndpointBuilder - ok
09:12:06.0231 4724 Audiosrv (e760fc1bd68f7f6f1b17eb4e8d9480b0) C:\Windows\System32\Audiosrv.dll
09:12:06.0231 4724 Audiosrv - ok
09:12:06.0450 4724 AVG Security Toolbar Service (d45b7995761253a92ab071d576114f28) C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
09:12:06.0450 4724 AVG Security Toolbar Service - ok
09:12:06.0543 4724 avg9emc (aa054cd537357f03d5ba6aba7562b35f) C:\Program Files\AVG\AVG9\avgemc.exe
09:12:06.0543 4724 avg9emc - ok
09:12:06.0715 4724 avg9wd (c4d15594db5be042d3346ea58df87d89) C:\Program Files\AVG\AVG9\avgwdsvc.exe
09:12:06.0715 4724 avg9wd - ok
09:12:07.0089 4724 Avgfwfd (26a4640a8f16f8ce39b93329c83bb15a) C:\Windows\system32\DRIVERS\avgfwd6x.sys
09:12:07.0089 4724 Avgfwfd - ok
09:12:08.0041 4724 avgfws9 (0f38e92d794df187ba060939c552484f) C:\Program Files\AVG\AVG9\avgfws9.exe
09:12:08.0056 4724 avgfws9 - ok
09:12:09.0928 4724 AVGIDSAgent (abc81401a433f90414168e027aa6cc48) C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
09:12:09.0975 4724 AVGIDSAgent - ok
09:12:10.0334 4724 AVGIDSDrivervtx (1bf5706111544aefe29f64783c22d8fb) C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSDriver.sys
09:12:10.0334 4724 AVGIDSDrivervtx - ok
09:12:10.0818 4724 AVGIDSErHrvtx (3efc8f7eae54b780d1e0730da23dad25) C:\Windows\system32\Drivers\AVGIDSvx.sys
09:12:10.0818 4724 AVGIDSErHrvtx - ok
09:12:10.0958 4724 AVGIDSFiltervtx (a19902063d7368864cc5708f4d1b1c97) C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSFilter.sys
09:12:10.0958 4724 AVGIDSFiltervtx - ok
09:12:11.0020 4724 AVGIDSShimvtx (034df5434a092e3bb963d1febff7aabf) C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSShim.sys
09:12:11.0020 4724 AVGIDSShimvtx - ok
09:12:11.0426 4724 AvgLdx86 (b8c187439d27aba430dd69fdcf1fa657) C:\Windows\System32\Drivers\avgldx86.sys
09:12:11.0442 4724 AvgLdx86 - ok
09:12:11.0488 4724 AvgMfx86 (80ff2b1b7eeda966394f0baa895bbf4b) C:\Windows\System32\Drivers\avgmfx86.sys
09:12:11.0488 4724 AvgMfx86 - ok
09:12:11.0832 4724 AvgRkx86 (5bbcd8646074a3af4ee9b321d12c2b64) C:\Windows\system32\Drivers\avgrkx86.sys
09:12:11.0832 4724 AvgRkx86 - ok
09:12:11.0941 4724 AvgTdiX (9a7a93388f503a34e7339ae7f9997449) C:\Windows\System32\Drivers\avgtdix.sys
09:12:11.0941 4724 AvgTdiX - ok
09:12:11.0988 4724 Beep (ac3dd1708b22761ebd7cbe14dcc3b5d7) C:\Windows\system32\drivers\Beep.sys
09:12:11.0988 4724 Beep - ok
09:12:12.0128 4724 BFE (98ebdffb824a7c265337d68dd480e45c) C:\Windows\System32\bfe.dll
09:12:12.0128 4724 BFE - ok
09:12:12.0222 4724 BITS (da551697e34d2b9943c8b1c8eaffe89a) C:\Windows\system32\qmgr.dll
09:12:12.0237 4724 BITS - ok
09:12:12.0237 4724 bowser (913cd06fbe9105ce6077e90fd4418561) C:\Windows\system32\DRIVERS\bowser.sys
09:12:12.0237 4724 bowser - ok
09:12:12.0331 4724 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
09:12:12.0331 4724 BrFiltLo - ok
09:12:12.0456 4724 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
09:12:12.0456 4724 BrFiltUp - ok
09:12:12.0487 4724 Browser (beb6470532b7461d7bb426e3facb424f) C:\Windows\System32\browser.dll
09:12:12.0487 4724 Browser - ok
09:12:12.0502 4724 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
09:12:12.0502 4724 Brserid - ok
09:12:12.0518 4724 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
09:12:12.0518 4724 BrSerWdm - ok
09:12:12.0565 4724 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
09:12:12.0565 4724 BrUsbMdm - ok
09:12:12.0596 4724 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
09:12:12.0596 4724 BrUsbSer - ok
09:12:12.0627 4724 BthEnum (cf97c2d6a011ee9403b42191b5f95ba8) C:\Windows\system32\DRIVERS\BthEnum.sys
09:12:12.0627 4724 BthEnum - ok
09:12:12.0846 4724 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
09:12:12.0846 4724 BTHMODEM - ok
09:12:12.0877 4724 BthPan (b8c3d9ddf85fd197c3e5f849fef71144) C:\Windows\system32\DRIVERS\bthpan.sys
09:12:12.0877 4724 BthPan - ok
09:12:12.0892 4724 BTHPORT (b4ce8000aab30a9ab16cd0fb3db4d7cf) C:\Windows\system32\Drivers\BTHport.sys
09:12:12.0908 4724 BTHPORT - ok
09:12:12.0939 4724 BthServ (58ee7f5e68310bc8d4e7cebd8358c12e) C:\Windows\System32\bthserv.dll
09:12:12.0939 4724 BthServ - ok
09:12:12.0970 4724 BTHUSB (9a4ddc8544c1459aa2a118a8858dade3) C:\Windows\system32\Drivers\BTHUSB.sys
09:12:12.0970 4724 BTHUSB - ok
09:12:13.0017 4724 cdfs (6c3a437fc873c6f6a4fc620b6888cb86) C:\Windows\system32\DRIVERS\cdfs.sys
09:12:13.0017 4724 cdfs - ok
09:12:13.0111 4724 cdrom (8d1866e61af096ae8b582454f5e4d303) C:\Windows\system32\DRIVERS\cdrom.sys
09:12:13.0111 4724 cdrom - ok
09:12:13.0158 4724 CertPropSvc (0600e04315fe543802a379d5d23c8be0) C:\Windows\System32\certprop.dll
09:12:13.0158 4724 CertPropSvc - ok
09:12:13.0173 4724 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
09:12:13.0173 4724 circlass - ok
09:12:13.0251 4724 CLFS (1b84fd0937d3b99af9ba38ddff3daf54) C:\Windows\system32\CLFS.sys
09:12:13.0251 4724 CLFS - ok
09:12:13.0470 4724 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:12:13.0470 4724 clr_optimization_v2.0.50727_32 - ok
09:12:13.0516 4724 CmBatt (ed97ad3df1b9005989eaf149bf06c821) C:\Windows\system32\DRIVERS\CmBatt.sys
09:12:13.0516 4724 CmBatt - ok
09:12:13.0579 4724 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
09:12:13.0579 4724 cmdide - ok
09:12:13.0610 4724 Compbatt (722936afb75a7f509662b69b5632f48a) C:\Windows\system32\DRIVERS\compbatt.sys
09:12:13.0610 4724 Compbatt - ok
09:12:13.0626 4724 COMSysApp - ok
09:12:13.0672 4724 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
09:12:13.0672 4724 crcdisk - ok
09:12:13.0704 4724 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
09:12:13.0704 4724 Crusoe - ok
09:12:13.0750 4724 CryptSvc (1c26fb097170a2a91066d1e3a24366e3) C:\Windows\system32\cryptsvc.dll
09:12:13.0750 4724 CryptSvc - ok
09:12:13.0938 4724 DcomLaunch (7b981222a257d076885bffb66f19b7ce) C:\Windows\system32\rpcss.dll
09:12:13.0953 4724 DcomLaunch - ok
09:12:14.0047 4724 DfsC (a7179de59ae269ab70345527894ccd7c) C:\Windows\system32\Drivers\dfsc.sys
09:12:14.0062 4724 DfsC - ok
09:12:14.0437 4724 DFSR (e0d584aa76c7d845ba9f3a788260528f) C:\Windows\system32\DFSR.exe
09:12:14.0452 4724 DFSR - ok
09:12:15.0045 4724 Dhcp (17210d8064ec116a3fc6b5e45e577d43) C:\Windows\System32\dhcpcsvc.dll
09:12:15.0045 4724 Dhcp - ok
09:12:15.0170 4724 disk (841af4c4d41d3e3b2f244e976b0f7963) C:\Windows\system32\drivers\disk.sys
09:12:15.0170 4724 disk - ok
09:12:15.0201 4724 Dnscache (7ef78529439683570884f9308a02ec11) C:\Windows\System32\dnsrslvr.dll
09:12:15.0201 4724 Dnscache - ok
09:12:15.0279 4724 dot3svc (1f795d214820e496bf1124434a6db546) C:\Windows\System32\dot3svc.dll
09:12:15.0279 4724 dot3svc - ok
09:12:15.0326 4724 DPS (032c90ad677bf7b7a8013d6087c7a921) C:\Windows\system32\dps.dll
09:12:15.0326 4724 DPS - ok
09:12:15.0357 4724 drmkaud (ee472cd2c01f6f8e8aa1fa06ffef61b6) C:\Windows\system32\drivers\drmkaud.sys
09:12:15.0357 4724 drmkaud - ok
09:12:15.0513 4724 DXGKrnl (334988883de69adb27e2cf9f9715bbdb) C:\Windows\System32\drivers\dxgkrnl.sys
09:12:15.0513 4724 DXGKrnl - ok
09:12:15.0576 4724 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
09:12:15.0576 4724 E1G60 - ok
09:12:15.0607 4724 EapHost (90a0a875642e18618010645311b4e89e) C:\Windows\System32\eapsvc.dll
09:12:15.0607 4724 EapHost - ok
09:12:15.0638 4724 Ecache (0efc7531b936ee57fdb4e837664c509f) C:\Windows\system32\drivers\ecache.sys
09:12:15.0638 4724 Ecache - ok
09:12:15.0763 4724 ehRecvr (b4580122b0a7b263b6ee9acba69c8013) C:\Windows\ehome\ehRecvr.exe
09:12:15.0763 4724 ehRecvr - ok
09:12:15.0810 4724 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
09:12:15.0810 4724 ehSched - ok
09:12:15.0825 4724 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
09:12:15.0825 4724 ehstart - ok
09:12:15.0903 4724 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
09:12:15.0903 4724 elxstor - ok
09:12:16.0090 4724 EMDMgmt (3226fda08988526e819e364e8cce4cee) C:\Windows\system32\emdmgmt.dll
09:12:16.0090 4724 EMDMgmt - ok
09:12:16.0137 4724 epmntdrv (539ca34fbc74ec366a0d751028c32a08) C:\Windows\system32\epmntdrv.sys
09:12:16.0153 4724 epmntdrv - ok
09:12:16.0200 4724 EuGdiDrv (1f2f4ab15ce03ecc257feb2f6dc5a013) C:\Windows\system32\EuGdiDrv.sys
09:12:16.0200 4724 EuGdiDrv - ok
09:12:16.0293 4724 EventSystem (dfb250bac1a9108abd777ea181e32015) C:\Windows\system32\es.dll
09:12:16.0293 4724 EventSystem - ok
09:12:16.0324 4724 fastfat (84a317cb0b3954d3768cdcd018dbf670) C:\Windows\system32\drivers\fastfat.sys
09:12:16.0340 4724 fastfat - ok
09:12:16.0356 4724 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
09:12:16.0356 4724 fdc - ok
09:12:16.0371 4724 fdPHost (e43bce1a77d6fd4ed5f8e0482b9e7df1) C:\Windows\system32\fdPHost.dll
09:12:16.0371 4724 fdPHost - ok
09:12:16.0449 4724 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
09:12:16.0449 4724 FDResPub - ok
09:12:16.0558 4724 FileInfo (65773d6115c037ffd7ef8280ae85eb9d) C:\Windows\system32\drivers\fileinfo.sys
09:12:16.0558 4724 FileInfo - ok
09:12:16.0574 4724 Filetrace (c226dd0de060745f3e042f58dcf78402) C:\Windows\system32\drivers\filetrace.sys
09:12:16.0574 4724 Filetrace - ok
09:12:16.0590 4724 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
09:12:16.0590 4724 flpydisk - ok
09:12:16.0652 4724 FltMgr (a6a8da7ae4d53394ab22ac3ab6d3f5d3) C:\Windows\system32\drivers\fltmgr.sys
09:12:16.0652 4724 FltMgr - ok
09:12:16.0714 4724 FontCache3.0.0.0 (7ef57375636991f794bf40b522a8e7ef) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:12:16.0714 4724 FontCache3.0.0.0 - ok
09:12:16.0746 4724 Fs_Rec (66a078591208baa210c7634b11eb392c) C:\Windows\system32\drivers\Fs_Rec.sys
09:12:16.0746 4724 Fs_Rec - ok
09:12:16.0808 4724 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
09:12:16.0808 4724 gagp30kx - ok
09:12:16.0870 4724 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
09:12:16.0870 4724 giveio - ok
09:12:16.0933 4724 gpsvc (bcf6589c42d8f6a20f33ef133ffe0524) C:\Windows\System32\gpsvc.dll
09:12:16.0933 4724 gpsvc - ok
09:12:16.0980 4724 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
09:12:16.0980 4724 hamachi - ok
09:12:17.0276 4724 Hamachi2Svc (fa89c0429821c7c429eec7a0ce1c02d3) D:\Program Files\LogMeIn Hamachi\hamachi-2.exe
09:12:17.0292 4724 Hamachi2Svc - ok
09:12:17.0385 4724 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
09:12:17.0385 4724 HdAudAddService - ok
09:12:17.0432 4724 HDAudBus (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\DRIVERS\HDAudBus.sys
09:12:17.0432 4724 HDAudBus - ok
09:12:17.0463 4724 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
09:12:17.0463 4724 HidBth - ok
09:12:17.0479 4724 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
09:12:17.0479 4724 HidIr - ok
09:12:17.0510 4724 hidserv (8fa640195279ace21bea91396a0054fc) C:\Windows\System32\hidserv.dll
09:12:17.0510 4724 hidserv - ok
09:12:17.0526 4724 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\DRIVERS\hidusb.sys
09:12:17.0526 4724 HidUsb - ok
09:12:17.0682 4724 hkmsvc (d40aa05e29bf6ed29b139f044b461e9b) C:\Windows\system32\kmsvc.dll
09:12:17.0682 4724 hkmsvc - ok
09:12:17.0697 4724 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
09:12:17.0713 4724 HpCISSs - ok
09:12:17.0760 4724 HTTP (ea24fe637d974a8a31bc650f478e3533) C:\Windows\system32\drivers\HTTP.sys
09:12:17.0760 4724 HTTP - ok
09:12:17.0806 4724 Huawei (c1258adcbe6e51a3c06c234d2bdb81b5) C:\Windows\system32\DRIVERS\ewdcsc.sys
09:12:17.0806 4724 Huawei - ok
09:12:17.0838 4724 hwdatacard (0515065a3c7e8869dd01253e987c5bd1) C:\Windows\system32\DRIVERS\ewusbmdm.sys
09:12:17.0838 4724 hwdatacard - ok
09:12:17.0947 4724 hwusbdev (a259d3619aa23d4562581067f85e2006) C:\Windows\system32\DRIVERS\ewusbdev.sys
09:12:17.0947 4724 hwusbdev - ok
09:12:17.0978 4724 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
09:12:17.0978 4724 i2omp - ok
09:12:18.0025 4724 i8042prt (1c9ee072baa3abb460b91d7ee9152660) C:\Windows\system32\DRIVERS\i8042prt.sys
09:12:18.0025 4724 i8042prt - ok
09:12:18.0056 4724 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
09:12:18.0056 4724 iaStorV - ok
09:12:18.0243 4724 idsvc (6d1d3cab85ba0c63cb83296a8a1825f9) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:12:18.0243 4724 idsvc - ok
09:12:18.0274 4724 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
09:12:18.0274 4724 iirsp - ok
09:12:18.0352 4724 IKEEXT (35662fe4d8622f667aa5a5568f7f1b40) C:\Windows\System32\ikeext.dll
09:12:18.0352 4724 IKEEXT - ok
09:12:19.0257 4724 IntcAzAudAddService (edc37b918e583a5a813c53d4f5588255) C:\Windows\system32\drivers\RTKVHDA.sys
09:12:19.0273 4724 IntcAzAudAddService - ok
09:12:19.0803 4724 intelide (988981c840084f480ba9e3319cebde1b) C:\Windows\system32\drivers\intelide.sys
09:12:19.0803 4724 intelide - ok
09:12:19.0912 4724 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
09:12:19.0912 4724 intelppm - ok
09:12:19.0990 4724 IPBusEnum (88cf5281ed9880d74dc9011cf8b5262d) C:\Windows\system32\ipbusenum.dll
09:12:20.0006 4724 IPBusEnum - ok
09:12:20.0084 4724 IpFilterDriver (880c6f86cc3f551b8fea2c11141268c0) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:12:20.0084 4724 IpFilterDriver - ok
09:12:20.0193 4724 iphlpsvc (637d942341de63f91eed1a9847ba2471) C:\Windows\System32\iphlpsvc.dll
09:12:20.0193 4724 iphlpsvc - ok
09:12:20.0224 4724 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
09:12:20.0224 4724 IPMIDRV - ok
09:12:20.0240 4724 IPNAT (10077c35845101548037df04fd1a420b) C:\Windows\system32\DRIVERS\ipnat.sys
09:12:20.0240 4724 IPNAT - ok
09:12:20.0256 4724 IRENUM (a82f328f4792304184642d6d397bb1e3) C:\Windows\system32\drivers\irenum.sys
09:12:20.0256 4724 IRENUM - ok
09:12:20.0287 4724 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
09:12:20.0287 4724 isapnp - ok
09:12:20.0302 4724 iScsiPrt (4dca456d4d5723f8fa9c6760d240b0df) C:\Windows\system32\DRIVERS\msiscsi.sys
09:12:20.0302 4724 iScsiPrt - ok
09:12:20.0365 4724 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
09:12:20.0365 4724 iteatapi - ok
09:12:20.0380 4724 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
09:12:20.0380 4724 iteraid - ok
09:12:20.0536 4724 kbdclass (b076b2ab806b3f696dab21375389101c) C:\Windows\system32\DRIVERS\kbdclass.sys
09:12:20.0536 4724 kbdclass - ok
09:12:20.0583 4724 kbdhid (ed61dbc6603f612b7338283edbacbc4b) C:\Windows\system32\DRIVERS\kbdhid.sys
09:12:20.0583 4724 kbdhid - ok
09:12:20.0614 4724 KeyIso (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
09:12:20.0630 4724 KeyIso - ok
09:12:20.0692 4724 KSecDD (0a829977b078dea11641fc2af87ceade) C:\Windows\system32\Drivers\ksecdd.sys
09:12:20.0692 4724 KSecDD - ok
09:12:20.0973 4724 KtmRm (45c537fe5dde9a0146aeff76e615737d) C:\Windows\system32\msdtckrm.dll
09:12:20.0973 4724 KtmRm - ok
09:12:21.0020 4724 LanmanServer (53d1482fc1aa36ac015a85e6cf2146bd) C:\Windows\System32\srvsvc.dll
09:12:21.0020 4724 LanmanServer - ok
09:12:21.0114 4724 LanmanWorkstation (435f0f6dc87a4b5da78f1fa309884189) C:\Windows\System32\wkssvc.dll
09:12:21.0129 4724 LanmanWorkstation - ok
09:12:21.0145 4724 lltdio (fd015b4f95daa2b712f0e372a116fbad) C:\Windows\system32\DRIVERS\lltdio.sys
09:12:21.0145 4724 lltdio - ok
09:12:21.0192 4724 lltdsvc (7450dbcf754391dd6363fffd5ef0e789) C:\Windows\System32\lltdsvc.dll
09:12:21.0192 4724 lltdsvc - ok
09:12:21.0254 4724 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
09:12:21.0254 4724 lmhosts - ok
09:12:21.0316 4724 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
09:12:21.0316 4724 lmimirr - ok
09:12:21.0457 4724 LMIRfsClientNP - ok
09:12:21.0488 4724 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
09:12:21.0488 4724 LMIRfsDriver - ok
09:12:21.0519 4724 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
09:12:21.0519 4724 LSI_FC - ok
09:12:21.0550 4724 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
09:12:21.0550 4724 LSI_SAS - ok
09:12:21.0566 4724 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
09:12:21.0566 4724 LSI_SCSI - ok
09:12:21.0582 4724 luafv (42885bb44b6e065b8575a8dd6c430c52) C:\Windows\system32\drivers\luafv.sys
09:12:21.0582 4724 luafv - ok
09:12:21.0613 4724 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
09:12:21.0613 4724 MBAMProtector - ok
09:12:21.0816 4724 MBAMService (ba400ed640bca1eae5c727ae17c10207) D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
09:12:21.0816 4724 MBAMService - ok
09:12:21.0862 4724 Mcx2Svc (e93c1ad58e88a0846eaee10671c2a8f3) C:\Windows\system32\Mcx2Svc.dll
09:12:21.0862 4724 Mcx2Svc - ok
09:12:21.0925 4724 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
09:12:21.0925 4724 megasas - ok
09:12:22.0206 4724 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:12:22.0206 4724 Microsoft Office Groove Audit Service - ok
09:12:22.0299 4724 MMCSS (9dfa3a459af0954aa85b4f7622ad87bb) C:\Windows\system32\mmcss.dll
09:12:22.0315 4724 MMCSS - ok
09:12:22.0346 4724 Modem (21755967298a46fb6adfec9db6012211) C:\Windows\system32\drivers\modem.sys
09:12:22.0346 4724 Modem - ok
09:12:22.0440 4724 monitor (7446e104a5fe5987ca9e4983fbac4f97) C:\Windows\system32\DRIVERS\monitor.sys
09:12:22.0440 4724 monitor - ok
09:12:22.0471 4724 mouclass (5fba13c1a1841b0885d316ed3589489d) C:\Windows\system32\DRIVERS\mouclass.sys
09:12:22.0471 4724 mouclass - ok
09:12:22.0486 4724 mouhid (b569b5c5d3bde545df3a6af512cccdba) C:\Windows\system32\DRIVERS\mouhid.sys
09:12:22.0486 4724 mouhid - ok
09:12:22.0736 4724 MountMgr (01f1e5a3e4877c931cbb31613fec16a6) C:\Windows\system32\drivers\mountmgr.sys
09:12:22.0736 4724 MountMgr - ok
09:12:22.0798 4724 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
09:12:22.0798 4724 mpio - ok
09:12:23.0001 4724 mpsdrv (6e7a7f0c1193ee5648443fe2d4b789ec) C:\Windows\system32\drivers\mpsdrv.sys
09:12:23.0001 4724 mpsdrv - ok
09:12:23.0064 4724 MpsSvc (563ed845885c6a7c09a7715d8bd0585c) C:\Windows\system32\mpssvc.dll
09:12:23.0064 4724 MpsSvc - ok
09:12:23.0095 4724 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
09:12:23.0095 4724 Mraid35x - ok
09:12:23.0188 4724 MRxDAV (1d8828b98ee309d65e006f0829e280e5) C:\Windows\system32\drivers\mrxdav.sys
09:12:23.0188 4724 MRxDAV - ok
09:12:23.0344 4724 mrxsmb (8af705ce1bb907932157fab821170f27) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:12:23.0344 4724 mrxsmb - ok
09:12:23.0454 4724 mrxsmb10 (47e13ab23371be3279eef22bbfa2c1be) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:12:23.0454 4724 mrxsmb10 - ok
09:12:23.0500 4724 mrxsmb20 (90b3fc7bd6b3d7ee7635debba2187f66) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:12:23.0500 4724 mrxsmb20 - ok
09:12:23.0563 4724 msahci (b2efb263600314babcf9dadb1cbba994) C:\Windows\system32\drivers\msahci.sys
09:12:23.0563 4724 msahci - ok
09:12:23.0610 4724 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
09:12:23.0610 4724 msdsm - ok
09:12:23.0844 4724 MSDTC (bc64a92d821efea8bab8e8caf1b668bc) C:\Windows\System32\msdtc.exe
09:12:23.0844 4724 MSDTC - ok
09:12:23.0875 4724 Msfs (729eafefd4e7417165f353a18dbe947d) C:\Windows\system32\drivers\Msfs.sys
09:12:23.0875 4724 Msfs - ok
09:12:23.0922 4724 msisadrv (5f454a16a5146cd91a176d70f0cfa3ec) C:\Windows\system32\drivers\msisadrv.sys
09:12:23.0922 4724 msisadrv - ok
09:12:24.0312 4724 MSiSCSI (8acf956d9154e893e789881430c12632) C:\Windows\system32\iscsiexe.dll
09:12:24.0327 4724 MSiSCSI - ok
09:12:24.0327 4724 msiserver - ok
09:12:24.0343 4724 MSKSSRV (892cedefa7e0ffe7be8da651b651d047) C:\Windows\system32\drivers\MSKSSRV.sys
09:12:24.0343 4724 MSKSSRV - ok
09:12:24.0358 4724 MSPCLOCK (ae2cb1da69b2676b4cee2a501af5871c) C:\Windows\system32\drivers\MSPCLOCK.sys
09:12:24.0358 4724 MSPCLOCK - ok
09:12:24.0374 4724 MSPQM (f910da84fa90c44a3addb7cd874463fd) C:\Windows\system32\drivers\MSPQM.sys
09:12:24.0374 4724 MSPQM - ok
09:12:24.0405 4724 MsRPC (84571c0ae07647ba38d493f5f0015df7) C:\Windows\system32\drivers\MsRPC.sys
09:12:24.0421 4724 MsRPC - ok
09:12:24.0452 4724 mssmbios (4385c80ede885e25492d408cad91bd6f) C:\Windows\system32\DRIVERS\mssmbios.sys
09:12:24.0452 4724 mssmbios - ok
09:12:24.0452 4724 MSTEE (c826dd1373f38afd9ca46ec3c436a14e) C:\Windows\system32\drivers\MSTEE.sys
09:12:24.0452 4724 MSTEE - ok
09:12:24.0483 4724 MTsensor (97affa9d95ffe20eee6229bc6be166cf) C:\Windows\system32\DRIVERS\ATKACPI.sys
09:12:24.0483 4724 MTsensor - ok
09:12:24.0499 4724 Mup (fa7aa70050cf5e2d15de00941e5665e5) C:\Windows\system32\Drivers\mup.sys
09:12:24.0499 4724 Mup - ok
09:12:24.0733 4724 napagent (1cdbb5d002fe2bc5300aa20550d8a52e) C:\Windows\system32\qagentRT.dll
09:12:24.0748 4724 napagent - ok
09:12:24.0889 4724 NativeWifiP (6da4a0fc7c0e83df0cb3cfd0a514c3bc) C:\Windows\system32\DRIVERS\nwifi.sys
09:12:24.0889 4724 NativeWifiP - ok
09:12:25.0029 4724 NDIS (227c11e1e7cf6ef8afb2a238d209760c) C:\Windows\system32\drivers\ndis.sys
09:12:25.0029 4724 NDIS - ok
09:12:25.0060 4724 NdisTapi (81659cdcbd0f9a9e07e6878ad8c78d3f) C:\Windows\system32\DRIVERS\ndistapi.sys
09:12:25.0076 4724 NdisTapi - ok
09:12:25.0107 4724 Ndisuio (5de5ee546bf40838ebe0e01cb629df64) C:\Windows\system32\DRIVERS\ndisuio.sys
09:12:25.0107 4724 Ndisuio - ok
09:12:25.0201 4724 NdisWan (397402adcbb8946223a1950101f6cd94) C:\Windows\system32\DRIVERS\ndiswan.sys
09:12:25.0201 4724 NdisWan - ok
09:12:25.0216 4724 NDProxy (1b24fa907af283199a81b3bb37e5e526) C:\Windows\system32\drivers\NDProxy.sys
09:12:25.0216 4724 NDProxy - ok
09:12:25.0482 4724 Nero BackItUp Scheduler 4.0 (c7f5c284b6f46fcaf6910ea4e644700b) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
09:12:25.0497 4724 Nero BackItUp Scheduler 4.0 - ok
09:12:25.0513 4724 NetBIOS (356dbb9f98e8dc1028dd3092fceeb877) C:\Windows\system32\DRIVERS\netbios.sys
09:12:25.0513 4724 NetBIOS - ok
09:12:25.0544 4724 netbt (e3a168912e7eefc3bd3b814720d68b41) C:\Windows\system32\DRIVERS\netbt.sys
09:12:25.0544 4724 netbt - ok
09:12:25.0575 4724 Netlogon (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
09:12:25.0575 4724 Netlogon - ok
09:12:25.0840 4724 Netman (90a4dae28b94497f83bea0f2a3b77092) C:\Windows\System32\netman.dll
09:12:25.0856 4724 Netman - ok
09:12:25.0996 4724 netprofm (7c5c3d9ceee838856b828ab6f98a2857) C:\Windows\System32\netprofm.dll
09:12:25.0996 4724 netprofm - ok
09:12:26.0137 4724 NetTcpPortSharing (b418382de04ff58567aa07a2b66b2332) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:12:26.0137 4724 NetTcpPortSharing - ok
09:12:26.0932 4724 NETw4v32 (25acccfc33dd448b9d3037c5e439e830) C:\Windows\system32\DRIVERS\NETw4v32.sys
09:12:26.0948 4724 NETw4v32 - ok
09:12:27.0198 4724 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
09:12:27.0198 4724 nfrd960 - ok
09:12:27.0385 4724 NlaSvc (c424117a562f2de37a42266894c79aeb) C:\Windows\System32\nlasvc.dll
09:12:27.0385 4724 NlaSvc - ok
09:12:27.0400 4724 Npfs (4f9832beb9fafd8ceb0e541f1323b26e) C:\Windows\system32\drivers\Npfs.sys
09:12:27.0400 4724 Npfs - ok
09:12:27.0416 4724 nsi (23b8201a363de0e649fc75ee9874dee2) C:\Windows\system32\nsisvc.dll
09:12:27.0416 4724 nsi - ok
09:12:27.0447 4724 nsiproxy (b488dfec274de1fc9d653870ef2587be) C:\Windows\system32\drivers\nsiproxy.sys
09:12:27.0447 4724 nsiproxy - ok
09:12:27.0744 4724 Ntfs (37430aa7a66d7a63407adc2c0d05e9f6) C:\Windows\system32\drivers\Ntfs.sys
09:12:27.0759 4724 Ntfs - ok
09:12:27.0837 4724 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
09:12:27.0853 4724 ntrigdigi - ok
09:12:27.0884 4724 Null (ec5efb3c60f1b624648344a328bce596) C:\Windows\system32\drivers\Null.sys
09:12:27.0884 4724 Null - ok
09:12:29.0896 4724 nvlddmkm (1003439396eae18c3699b5d4532f56aa) C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:12:29.0959 4724 nvlddmkm - ok
09:12:30.0505 4724 nvraid (6f785db62a6d8f3fafd3e5695277e849) C:\Windows\system32\drivers\nvraid.sys
09:12:30.0505 4724 nvraid - ok
09:12:30.0583 4724 nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\drivers\nvstor.sys
09:12:30.0583 4724 nvstor - ok
09:12:30.0739 4724 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
09:12:30.0739 4724 nv_agp - ok
09:12:31.0394 4724 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:12:31.0394 4724 odserv - ok
09:12:31.0566 4724 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
09:12:31.0566 4724 ohci1394 - ok
09:12:31.0800 4724 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:12:31.0815 4724 ose - ok
09:12:32.0268 4724 p2pimsvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
09:12:32.0361 4724 p2pimsvc - ok
09:12:32.0377 4724 p2psvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
09:12:32.0377 4724 p2psvc - ok
09:12:32.0502 4724 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
09:12:32.0502 4724 Parport - ok
09:12:32.0517 4724 partmgr (555a5b2c8022983bc7467bc925b222ee) C:\Windows\system32\drivers\partmgr.sys
09:12:32.0517 4724 partmgr - ok
09:12:32.0548 4724 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
09:12:32.0548 4724 Parvdm - ok
09:12:32.0548 4724 PcaSvc (d8c5c215c932233a4f1d7f368f4e4e65) C:\Windows\System32\pcasvc.dll
09:12:32.0564 4724 PcaSvc - ok
09:12:32.0595 4724 pci (1085d75657807e0e8b32f9e19a1647c3) C:\Windows\system32\drivers\pci.sys
09:12:32.0595 4724 pci - ok
09:12:32.0611 4724 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
09:12:32.0611 4724 pciide - ok
09:12:32.0938 4724 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
09:12:32.0954 4724 pcmcia - ok
09:12:33.0219 4724 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
09:12:33.0235 4724 PEAUTH - ok
09:12:33.0718 4724 pla (cd05a38d166beade18030bafc0c0a939) C:\Windows\system32\pla.dll
09:12:34.0342 4724 pla - ok
09:12:34.0514 4724 PlugPlay (747bb4c31f3b6e8d1b5ed0ad61518cb5) C:\Windows\system32\umpnpmgr.dll
09:12:34.0514 4724 PlugPlay - ok
09:12:34.0670 4724 PNRPAutoReg (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
09:12:34.0670 4724 PNRPAutoReg - ok
09:12:34.0686 4724 PNRPsvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
09:12:34.0686 4724 PNRPsvc - ok
09:12:34.0779 4724 PolicyAgent (5ebdec613bd377ce9a85382be5c6b83b) C:\Windows\System32\ipsecsvc.dll
09:12:34.0779 4724 PolicyAgent - ok
09:12:34.0888 4724 PptpMiniport (6c359ac71d7b550a0d41f9db4563ce05) C:\Windows\system32\DRIVERS\raspptp.sys
09:12:34.0888 4724 PptpMiniport - ok
09:12:35.0029 4724 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
09:12:35.0029 4724 Processor - ok
09:12:35.0091 4724 ProfSvc (213112e152e68f0e4705e36f052a2880) C:\Windows\system32\profsvc.dll
09:12:35.0091 4724 ProfSvc - ok
09:12:35.0154 4724 ProtectedStorage (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
09:12:35.0154 4724 ProtectedStorage - ok
09:12:35.0200 4724 PSched (2c8bae55247c4e09352e870292e4d1ab) C:\Windows\system32\DRIVERS\pacer.sys
09:12:35.0200 4724 PSched - ok
09:12:35.0310 4724 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
09:12:35.0310 4724 ql2300 - ok
09:12:35.0356 4724 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
09:12:35.0356 4724 ql40xx - ok
09:12:35.0403 4724 QWAVE (ca61bdfd3713a7ce75f2812afc431594) C:\Windows\system32\qwave.dll
09:12:35.0481 4724 QWAVE - ok
09:12:35.0544 4724 QWAVEdrv (d2b3e2b7426dc23e185fbc73c8936c12) C:\Windows\system32\drivers\qwavedrv.sys
09:12:35.0544 4724 QWAVEdrv - ok
09:12:35.0575 4724 RasAcd (bd7b30f55b3649506dd8b3d38f571d2a) C:\Windows\system32\DRIVERS\rasacd.sys
09:12:35.0575 4724 RasAcd - ok
09:12:35.0606 4724 RasAuto (f14f4aab9f54d099fe99192bdb100ac9) C:\Windows\System32\rasauto.dll
09:12:35.0606 4724 RasAuto - ok
09:12:35.0622 4724 Rasl2tp (88587dd843e2059848995b407b67f6cf) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:12:35.0622 4724 Rasl2tp - ok
09:12:35.0684 4724 RasMan (11d65e29bc9d1e4114d18fe68194394c) C:\Windows\System32\rasmans.dll
09:12:35.0684 4724 RasMan - ok
09:12:35.0700 4724 RasPppoe (ccf4e9c6cbbac81437f88cb2ae0b6c96) C:\Windows\system32\DRIVERS\raspppoe.sys
09:12:35.0700 4724 RasPppoe - ok
09:12:35.0731 4724 rdbss (54129c5d9581bbec8bd1ebd3ba813f47) C:\Windows\system32\DRIVERS\rdbss.sys
09:12:35.0746 4724 rdbss - ok
09:12:35.0793 4724 RDPCDD (794585276b5d7fca9f3fc15543f9f0b9) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:12:35.0793 4724 RDPCDD - ok
09:12:35.0840 4724 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
09:12:35.0840 4724 rdpdr - ok
09:12:35.0871 4724 RDPENCDD (980b56e2e273e19d3a9d72d5c420f008) C:\Windows\system32\drivers\rdpencdd.sys
09:12:35.0871 4724 RDPENCDD - ok
09:12:35.0902 4724 RDPWD (8830e790a74a96605faba74f9665bb3c) C:\Windows\system32\drivers\RDPWD.sys
09:12:35.0918 4724 RDPWD - ok
09:12:35.0980 4724 RemoteAccess (6c1a43c589ee8011a1ebfd51c01b77ce) C:\Windows\System32\mprdim.dll
09:12:35.0980 4724 RemoteAccess - ok
09:12:36.0027 4724 RemoteRegistry (9a043808667c8c1893da7275af373f0e) C:\Windows\system32\regsvc.dll
09:12:36.0043 4724 RemoteRegistry - ok
09:12:36.0058 4724 RFCOMM (7ec90c316177ba3f1bce92005264b447) C:\Windows\system32\DRIVERS\rfcomm.sys
09:12:36.0058 4724 RFCOMM - ok
09:12:36.0090 4724 rimmptsk (c35ca13d3627ebd9dd12a23ce781bc3d) C:\Windows\system32\DRIVERS\rimmptsk.sys
09:12:36.0090 4724 rimmptsk - ok
09:12:36.0121 4724 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
09:12:36.0121 4724 rimsptsk - ok
09:12:36.0136 4724 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
09:12:36.0136 4724 rismxdp - ok
09:12:36.0168 4724 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
09:12:36.0168 4724 RpcLocator - ok
09:12:36.0261 4724 RpcSs (7b981222a257d076885bffb66f19b7ce) C:\Windows\system32\rpcss.dll
09:12:36.0261 4724 RpcSs - ok
09:12:36.0308 4724 rspndr (97e939d2128fec5d5a3e6e79b290a2f4) C:\Windows\system32\DRIVERS\rspndr.sys
09:12:36.0308 4724 rspndr - ok
09:12:36.0324 4724 SamSs (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
09:12:36.0324 4724 SamSs - ok
09:12:36.0339 4724 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
09:12:36.0339 4724 sbp2port - ok
09:12:36.0386 4724 SCardSvr (565b4b9e5ad2f2f18a4f8aafa6c06bbb) C:\Windows\System32\SCardSvr.dll
09:12:36.0386 4724 SCardSvr - ok
09:12:36.0511 4724 Schedule (886cec884b5be29ab9828b8ab46b11f7) C:\Windows\system32\schedsvc.dll
09:12:36.0511 4724 Schedule - ok
09:12:36.0542 4724 SCPolicySvc (0600e04315fe543802a379d5d23c8be0) C:\Windows\System32\certprop.dll
09:12:36.0542 4724 SCPolicySvc - ok
09:12:36.0604 4724 sdbus (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
09:12:36.0604 4724 sdbus - ok
09:12:36.0636 4724 SDRSVC (f7b6bf02240d0a764adf8c8966735552) C:\Windows\System32\SDRSVC.dll
09:12:36.0651 4724 SDRSVC - ok
09:12:36.0698 4724 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
09:12:36.0698 4724 secdrv - ok
09:12:36.0714 4724 seclogon (8388c4133ddbe62ad7bc3ec9f14271ed) C:\Windows\system32\seclogon.dll
09:12:36.0714 4724 seclogon - ok
09:12:36.0760 4724 SENS (34350ae2c1d33d21c7305f861bd8dad8) C:\Windows\system32\sens.dll
09:12:36.0776 4724 SENS - ok
09:12:36.0792 4724 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
09:12:36.0792 4724 Serenum - ok
09:12:36.0807 4724 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
09:12:36.0807 4724 Serial - ok
09:12:36.0838 4724 sermouse (450accd77ec5cea720c1cdb9e26b953b) C:\Windows\system32\drivers\sermouse.sys
09:12:36.0838 4724 sermouse - ok
09:12:36.0854 4724 SessionEnv (78878235da4df0d116e86837a0a21df8) C:\Windows\system32\sessenv.dll
09:12:36.0870 4724 SessionEnv - ok
09:12:36.0870 4724 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\DRIVERS\sffdisk.sys
09:12:36.0870 4724 sffdisk - ok
09:12:36.0885 4724 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
09:12:36.0885 4724 sffp_mmc - ok
09:12:36.0901 4724 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\DRIVERS\sffp_sd.sys
09:12:36.0901 4724 sffp_sd - ok
09:12:36.0916 4724 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
09:12:36.0916 4724 sfloppy - ok
09:12:36.0979 4724 SharedAccess (9a82bf4c90b00a63150a606a1e2fd82b) C:\Windows\System32\ipnathlp.dll
09:12:36.0979 4724 SharedAccess - ok
09:12:37.0026 4724 ShellHWDetection (b264dfa21677728613267fe63802b332) C:\Windows\System32\shsvcs.dll
09:12:37.0026 4724 ShellHWDetection - ok
09:12:37.0057 4724 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
09:12:37.0057 4724 sisagp - ok
09:12:37.0057 4724 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
09:12:37.0072 4724 SiSRaid2 - ok
09:12:37.0088 4724 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
09:12:37.0088 4724 SiSRaid4 - ok
09:12:37.0572 4724 slsvc (7610645679bb5994210d21a347e0c479) C:\Windows\system32\SLsvc.exe
09:12:37.0603 4724 slsvc - ok
09:12:37.0806 4724 SLUINotify (49670f3e42a0178a0ab425ae15d88e7c) C:\Windows\system32\SLUINotify.dll
09:12:37.0806 4724 SLUINotify - ok
09:12:37.0993 4724 Smb (ac0d90738adb51a6fd12ff00874a2162) C:\Windows\system32\DRIVERS\smb.sys
09:12:37.0993 4724 Smb - ok
09:12:38.0133 4724 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys
09:12:38.0149 4724 smserial - ok
09:12:38.0180 4724 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
09:12:38.0180 4724 SNMPTRAP - ok
09:12:38.0258 4724 speedfan (3fa2e254bfbce52b3c6f1bf23aab6911) C:\Windows\system32\speedfan.sys
09:12:38.0258 4724 speedfan - ok
09:12:38.0320 4724 spldr (426f9b029aa9162ceccf65369457d046) C:\Windows\system32\drivers\spldr.sys
09:12:38.0320 4724 spldr - ok
09:12:38.0367 4724 Spooler (da612ef2556776df2630b68bf2d48935) C:\Windows\System32\spoolsv.exe
09:12:38.0367 4724 Spooler - ok
09:12:38.0445 4724 srv (038579c35f7cad4a4bbf735dbf83277d) C:\Windows\system32\DRIVERS\srv.sys
09:12:38.0445 4724 srv - ok
09:12:38.0508 4724 srv2 (6971a757af8cb5e2cbcbb76cc530db6c) C:\Windows\system32\DRIVERS\srv2.sys
09:12:38.0508 4724 srv2 - ok
09:12:38.0539 4724 srvnet (9e1a4603b874eebce0298113951abefb) C:\Windows\system32\DRIVERS\srvnet.sys
09:12:38.0539 4724 srvnet - ok
09:12:38.0570 4724 SSDPSRV (8d3e4baff8b3997138c38eb1b600519a) C:\Windows\System32\ssdpsrv.dll
09:12:38.0570 4724 SSDPSRV - ok
09:12:38.0664 4724 stisvc (a941e099ef46e3cc12f898cbe1c39910) C:\Windows\System32\wiaservc.dll
09:12:38.0664 4724 stisvc - ok
09:12:38.0710 4724 swenum (1379bdb336f8158c176a465e30759f57) C:\Windows\system32\DRIVERS\swenum.sys
09:12:38.0710 4724 swenum - ok
09:12:38.0773 4724 swprv (749ada8d6c18a08adfede69cbf5db2e0) C:\Windows\System32\swprv.dll
09:12:38.0788 4724 swprv - ok
09:12:38.0804 4724 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
09:12:38.0804 4724 Symc8xx - ok
09:12:38.0835 4724 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
09:12:38.0835 4724 Sym_hi - ok
09:12:38.0835 4724 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
09:12:38.0851 4724 Sym_u3 - ok
09:12:38.0991 4724 SysMain (8f2b5fede18bd3c4c926cbf88e6f1264) C:\Windows\system32\sysmain.dll
09:12:39.0007 4724 SysMain - ok
09:12:39.0038 4724 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
09:12:39.0038 4724 TabletInputService - ok
09:12:39.0132 4724 TapiSrv (ef3dd33c740fc2f82e7e4622f1c49289) C:\Windows\System32\tapisrv.dll
09:12:39.0132 4724 TapiSrv - ok
09:12:39.0147 4724 TBS (68fa52794ae9acc61bde16fe0956b414) C:\Windows\System32\tbssvc.dll
09:12:39.0163 4724 TBS - ok
09:12:39.0272 4724 Tcpip (300208927321066ea53761fdc98747c6) C:\Windows\system32\drivers\tcpip.sys
09:12:39.0272 4724 Tcpip - ok
09:12:39.0288 4724 Tcpip6 (300208927321066ea53761fdc98747c6) C:\Windows\system32\DRIVERS\tcpip.sys
09:12:39.0288 4724 Tcpip6 - ok
09:12:39.0334 4724 tcpipreg (5ce0c4a7b12d0067dad527d72b68c726) C:\Windows\system32\drivers\tcpipreg.sys
09:12:39.0334 4724 tcpipreg - ok
09:12:39.0350 4724 TDPIPE (964248aef49c31fa6a93201a73ffaf50) C:\Windows\system32\drivers\tdpipe.sys
09:12:39.0350 4724 TDPIPE - ok
09:12:39.0366 4724 TDTCP (7d2c1ae1648a60fce4aa0f7982e419d3) C:\Windows\system32\drivers\tdtcp.sys
09:12:39.0366 4724 TDTCP - ok
09:12:39.0381 4724 tdx (ab4fde8af4a0270a46a001c08cbce1c2) C:\Windows\system32\DRIVERS\tdx.sys
09:12:39.0381 4724 tdx - ok
09:12:39.0412 4724 TermDD (2c549bd9dd091fbfaa0a2a48e82ec2fb) C:\Windows\system32\DRIVERS\termdd.sys
09:12:39.0412 4724 TermDD - ok
09:12:39.0787 4724 TermService (fad71c1e8e4047b154e899ae31eb8caa) C:\Windows\System32\termsrv.dll
09:12:39.0802 4724 TermService - ok
09:12:39.0849 4724 Themes (b264dfa21677728613267fe63802b332) C:\Windows\system32\shsvcs.dll
09:12:39.0849 4724 Themes - ok
09:12:39.0880 4724 THREADORDER (9dfa3a459af0954aa85b4f7622ad87bb) C:\Windows\system32\mmcss.dll
09:12:39.0880 4724 THREADORDER - ok
09:12:39.0927 4724 TPM (6d9ad3534a9cf7e4b86c6eae8bc335f6) C:\Windows\system32\drivers\tpm.sys
09:12:39.0927 4724 TPM - ok
09:12:39.0974 4724 TrkWks (6bba0582c0025d43729a1112d3b57897) C:\Windows\System32\trkwks.dll
09:12:39.0974 4724 TrkWks - ok
09:12:40.0021 4724 TrustedInstaller (34e388a395fedba1d0511ed39bbf4074) C:\Windows\servicing\TrustedInstaller.exe
09:12:40.0021 4724 TrustedInstaller - ok
09:12:40.0083 4724 tssecsrv (29f0eca726f0d51f7e048bdb0b372f29) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:12:40.0083 4724 tssecsrv - ok
09:12:40.0146 4724 tunmp (a858917785681743c512950fdfa14db7) C:\Windows\system32\DRIVERS\tunmp.sys
09:12:40.0146 4724 tunmp - ok
09:12:40.0177 4724 tunnel (29f1d1d888ee61d20d5662e72aa34129) C:\Windows\system32\DRIVERS\tunnel.sys
09:12:40.0177 4724 tunnel - ok
09:12:40.0192 4724 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
09:12:40.0208 4724 uagp35 - ok
09:12:40.0270 4724 udfs (6348da98707ceda8a0dfb05820e17732) C:\Windows\system32\DRIVERS\udfs.sys
09:12:40.0270 4724 udfs - ok
09:12:40.0317 4724 UI0Detect (24a333f4f14dcfb6ff6d5a1b9e5d79dd) C:\Windows\system32\UI0Detect.exe
09:12:40.0317 4724 UI0Detect - ok
09:12:40.0348 4724 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
09:12:40.0348 4724 uliagpkx - ok
09:12:40.0411 4724 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
09:12:40.0411 4724 uliahci - ok
09:12:40.0426 4724 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
09:12:40.0442 4724 UlSata - ok
09:12:40.0489 4724 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
09:12:40.0489 4724 ulsata2 - ok
09:12:40.0536 4724 umbus (3fb78f1d1dd86d87bececd9dffa24dd9) C:\Windows\system32\DRIVERS\umbus.sys
09:12:40.0536 4724 umbus - ok
09:12:41.0004 4724 upnphost (8eb871a3deb6b3d5a85eb6ddfc390b59) C:\Windows\System32\upnphost.dll
09:12:41.0004 4724 upnphost - ok
09:12:41.0191 4724 usbccgp (b0ba9caffe9b0555ec0317f30cb79cd2) C:\Windows\system32\DRIVERS\usbccgp.sys
09:12:41.0191 4724 usbccgp - ok
09:12:41.0238 4724 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
09:12:41.0238 4724 usbcir - ok
09:12:41.0284 4724 usbehci (c9fcd05b0a80ea08c2768e5a279b14de) C:\Windows\system32\DRIVERS\usbehci.sys
09:12:41.0284 4724 usbehci - ok
09:12:41.0425 4724 usbhub (5e44f7d957f7560da06bfe6b84b58a35) C:\Windows\system32\DRIVERS\usbhub.sys
09:12:41.0425 4724 usbhub - ok
09:12:41.0440 4724 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
09:12:41.0440 4724 usbohci - ok
09:12:41.0472 4724 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\DRIVERS\usbprint.sys
09:12:41.0472 4724 usbprint - ok
09:12:41.0503 4724 USBSTOR (7887ce56934e7f104e98c975f47353c5) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:12:41.0503 4724 USBSTOR - ok
09:12:41.0518 4724 usbuhci (d864735b0bfcb65440960a0b7cc1a38d) C:\Windows\system32\DRIVERS\usbuhci.sys
09:12:41.0518 4724 usbuhci - ok
09:12:41.0565 4724 usbvideo (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
09:12:41.0565 4724 usbvideo - ok
09:12:41.0596 4724 UxSms (f79d0d7c9004474cb42746d9b2c30a2b) C:\Windows\System32\uxsms.dll
09:12:41.0596 4724 UxSms - ok
09:12:41.0643 4724 vds (c9d0bafee0d0a2681f048ca61bc0da96) C:\Windows\System32\vds.exe
09:12:41.0643 4724 vds - ok
09:12:41.0674 4724 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
09:12:41.0674 4724 vga - ok
09:12:41.0690 4724 VgaSave (17a8f877314e4067f8c8172cc6d9101c) C:\Windows\System32\drivers\vga.sys
09:12:41.0690 4724 VgaSave - ok
09:12:41.0706 4724 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
09:12:41.0706 4724 viaagp - ok
09:12:41.0721 4724 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
09:12:41.0721 4724 ViaC7 - ok
09:12:41.0721 4724 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
09:12:41.0721 4724 viaide - ok
09:12:41.0752 4724 volmgr (103e84c95832d0ed93507997cc7b54e8) C:\Windows\system32\drivers\volmgr.sys
09:12:41.0752 4724 volmgr - ok
09:12:41.0862 4724 volmgrx (294da8d3f965f6a8db934a83c7b461ff) C:\Windows\system32\drivers\volmgrx.sys
09:12:41.0862 4724 volmgrx - ok
09:12:41.0924 4724 volsnap (80dc0c9bcb579ed9815001a4d37cbfd5) C:\Windows\system32\drivers\volsnap.sys
09:12:41.0924 4724 volsnap - ok
09:12:41.0971 4724 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
09:12:41.0971 4724 vsmraid - ok
09:12:42.0158 4724 VSS (e0e29d9ef2524abd11749c7c2fd7f607) C:\Windows\system32\vssvc.exe
09:12:42.0174 4724 VSS - ok
09:12:42.0626 4724 vToolbarUpdater11.0.2 (56e1e4442e4613fb2039a6b7421f4e58) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
09:12:42.0626 4724 vToolbarUpdater11.0.2 - ok
09:12:43.0312 4724 W32Time (62b0d0f6f5580d9d0dfa5e0b466ff2ed) C:\Windows\system32\w32time.dll
09:12:43.0312 4724 W32Time - ok
09:12:43.0390 4724 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
09:12:43.0390 4724 WacomPen - ok
09:12:43.0484 4724 Wanarp (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
09:12:43.0484 4724 Wanarp - ok
09:12:43.0500 4724 Wanarpv6 (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
09:12:43.0500 4724 Wanarpv6 - ok
09:12:43.0578 4724 wcncsvc (c1b19162e0509ceab4cdf664e139d956) C:\Windows\System32\wcncsvc.dll
09:12:43.0593 4724 wcncsvc - ok
09:12:43.0609 4724 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
09:12:43.0609 4724 WcsPlugInService - ok
09:12:43.0687 4724 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
09:12:43.0687 4724 Wd - ok
09:12:43.0905 4724 Wdf01000 (7b5f66e4a2219c7d9daf9e738480e534) C:\Windows\system32\drivers\Wdf01000.sys
09:12:43.0905 4724 Wdf01000 - ok
09:12:43.0952 4724 WdiServiceHost (2a424b89b14ef17a3d06bcb5a8f79601) C:\Windows\system32\wdi.dll
09:12:43.0952 4724 WdiServiceHost - ok
09:12:43.0983 4724 WdiSystemHost (2a424b89b14ef17a3d06bcb5a8f79601) C:\Windows\system32\wdi.dll
09:12:43.0983 4724 WdiSystemHost - ok
09:12:44.0014 4724 WebClient (01e41c264eedcb827820a1909162579f) C:\Windows\System32\webclnt.dll
09:12:44.0014 4724 WebClient - ok
09:12:44.0046 4724 Wecsvc (9cf67ff7f8d34cbf115d0c278b9f74aa) C:\Windows\system32\wecsvc.dll
09:12:44.0061 4724 Wecsvc - ok
09:12:44.0077 4724 wercplsupport (b68cab45db1dab59d92acadfad6364a8) C:\Windows\System32\wercplsupport.dll
09:12:44.0077 4724 wercplsupport - ok
09:12:44.0108 4724 WerSvc (36ba0707680ef4236fd752bee982cc25) C:\Windows\System32\WerSvc.dll
09:12:44.0108 4724 WerSvc - ok
09:12:44.0233 4724 WinDefend (0d5ad0e71ff5ddac5dd2f443b499abd0) C:\Program Files\Windows Defender\mpsvc.dll
09:12:44.0248 4724 WinDefend - ok
09:12:44.0264 4724 WinHttpAutoProxySvc - ok
09:12:44.0342 4724 Winmgmt (38a7b89de4e3417c122317949667fdd8) C:\Windows\system32\wbem\WMIsvc.dll
09:12:44.0358 4724 Winmgmt - ok
09:12:44.0451 4724 WinRM (3f6823040030c3e4da1cf11cd40b7534) C:\Windows\system32\WsmSvc.dll
09:12:44.0467 4724 WinRM - ok
09:12:44.0576 4724 Wlansvc (7640acea41348bfef34b76e245501261) C:\Windows\System32\wlansvc.dll
09:12:44.0592 4724 Wlansvc - ok
09:12:44.0638 4724 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
09:12:44.0638 4724 WmiAcpi - ok
09:12:44.0701 4724 wmiApSrv (a279323bee5fffafda222910bce92132) C:\Windows\system32\wbem\WmiApSrv.exe
09:12:44.0701 4724 wmiApSrv - ok
09:12:44.0888 4724 WMPNetworkSvc (acb2e63d50157e3ea7140f29d9e76a48) C:\Program Files\Windows Media Player\wmpnetwk.exe
09:12:44.0888 4724 WMPNetworkSvc - ok
09:12:44.0935 4724 WPCSvc (3d3b3b80c12abe506f56930c46422c28) C:\Windows\System32\wpcsvc.dll
09:12:44.0950 4724 WPCSvc - ok
09:12:44.0982 4724 WPDBusEnum (c24844a1d0d9528b19d5bc266b8cd572) C:\Windows\system32\wpdbusenum.dll
09:12:44.0982 4724 WPDBusEnum - ok
09:12:45.0028 4724 WpdUsb (2d27171b16a577ef14c1273668753485) C:\Windows\system32\DRIVERS\wpdusb.sys
09:12:45.0028 4724 WpdUsb - ok
09:12:45.0091 4724 ws2ifsl (84620aecdcfd2a7a14e6263927d8c0ed) C:\Windows\system32\drivers\ws2ifsl.sys
09:12:45.0091 4724 ws2ifsl - ok
09:12:45.0122 4724 wscsvc (f97cbb919af6d0a6643d1a59c15014d1) C:\Windows\system32\wscsvc.dll
09:12:45.0122 4724 wscsvc - ok
09:12:45.0122 4724 WSearch - ok
09:12:45.0294 4724 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
09:12:45.0840 4724 wuauserv - ok
09:12:46.0214 4724 WUDFRd (a2aafcc8a204736296d937c7c545b53f) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:12:46.0214 4724 WUDFRd - ok
09:12:46.0261 4724 wudfsvc (db5bf5aab72b1b99b5331231d09ebb26) C:\Windows\System32\WUDFSvc.dll
09:12:46.0261 4724 wudfsvc - ok
09:12:46.0292 4724 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
09:12:46.0744 4724 \Device\Harddisk0\DR0 - ok
09:12:46.0760 4724 Boot (0x1200) (b9d0e601a413566d2a0b00ee88abcb64) \Device\Harddisk0\DR0\Partition0
09:12:46.0776 4724 \Device\Harddisk0\DR0\Partition0 - ok
09:12:46.0791 4724 Boot (0x1200) (5c9f6162f081aa63cc4231cdb608f365) \Device\Harddisk0\DR0\Partition1
09:12:46.0807 4724 \Device\Harddisk0\DR0\Partition1 - ok
09:12:46.0822 4724 ============================================================
09:12:46.0822 4724 Scan finished
09:12:46.0822 4724 ============================================================
09:12:46.0838 2472 Detected object count: 0
09:12:46.0838 2472 Actual detected object count: 0
09:14:05.0212 2092 Deinitialize success

[jaro3]

Toto otestuj na Virustotal
C:\Windows\System32\Nsvideo.dll
C:\Windows\SSZIP.EXE
C:\Windows\SSETFX.EXE
C:\Windows\DUMMY.INI
C:\Windows\unlite3.exe
C:\Windows\System32\Sslsvc.dll
C:\Windows\muUpdate.dat

[bradto]

Zatím zkontrolováno (ostatní postupně dodám):
C:\Windows\System32\Nsvideo.dll
C:\Windows\SSZIP.EXE
C:\Windows\SSETFX.EXE
C:\Windows\DUMMY.INI
C:\Windows\unlite3.exe
C:\Windows\System32\Sslsvc.dll
C:\Windows\muUpdate.dat

//edit: doplněno.

[jaro3]

C:\Windows\SSZIP.EXE
C:\Windows\SSETFX.EXE
C:\Windows\System32\Sslsvc.dll
C:\Windows\muUpdate.dat

Zkopíruj si ty soubory do složky , zararuj a postni sem:
http://leteckaposta.cz/

[bradto]

http://leteckaposta.cz/649540519

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
C:\Windows\SSZIP.EXE
C:\Windows\SSETFX.EXE
C:\Windows\System32\Sslsvc.dll
C:\Windows\muUpdate.dat

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[bradto]

Mám nový internet a už nepadá (nový router apod.) I když bych rád věděl co s tím předtím bylo, tak to tu zamykám.

VYŘEŠENO