prosím o kontrolu logu spomalené PC Vyřešeno

[PARKR]

tady je log

ComboFix 12-07-21.01 - Roman 21.07.2012 13:27:03.3.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3327.2366 [GMT 2:00]
Spuštěný z: c:\users\Roman\Desktop\ComboFix\ComboFix.exe
Použité ovládací přepínače :: c:\users\Roman\Desktop\CFScript.txt
AV: avast! Internet Security *Disabled/Outdated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Internet Security *Disabled/Outdated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files\Spybot - Search & Destroy\SDWinSec.exe"
"c:\program files\Spybot - Search & Destroy\TeaTimer.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Spybot - Search & Destroy
c:\program files\Spybot - Search & Destroy\advcheck.dll
c:\program files\Spybot - Search & Destroy\SDWinSec.exe
c:\program files\Spybot - Search & Destroy\TeaTimer.exe
c:\programdata\Spybot - Search & Destroy
c:\programdata\Spybot - Search & Destroy\Logs\Checks.120720-2057.log
c:\programdata\Spybot - Search & Destroy\Logs\Checks.120720-2117.txt
c:\programdata\Spybot - Search & Destroy\Logs\Checks.120720-2124.log
c:\programdata\Spybot - Search & Destroy\Logs\Checks.120720-2137.txt
c:\programdata\Spybot - Search & Destroy\Logs\Resident.log
c:\programdata\Spybot - Search & Destroy\ProcCache.sbc
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar1.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar10.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar11.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar12.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar3.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar4.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar5.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar6.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar7.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar8.zip
c:\programdata\Spybot - Search & Destroy\Recovery\BabylonToolbar9.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly1.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly10.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly2.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly3.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly4.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly5.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly6.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly7.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly8.zip
c:\programdata\Spybot - Search & Destroy\Recovery\Complitly9.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho1.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho2.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho3.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho4.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho5.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho6.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho7.zip
c:\programdata\Spybot - Search & Destroy\Recovery\WinUrFacebho8.zip
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-21 do 2012-07-21 )))))))))))))))))))))))))))))))
.
.
2012-07-21 11:31 . 2012-07-21 11:34 -------- d-----w- c:\users\Roman\AppData\Local\temp
2012-07-21 11:31 . 2012-07-21 11:31 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-07-21 11:31 . 2012-07-21 11:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-21 06:08 . 2012-06-29 08:44 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{87DA0F6B-C465-4141-800B-56625F2814D8}\mpengine.dll
2012-07-19 18:01 . 2012-07-19 18:01 -------- d-----w- c:\windows\cs
2012-07-18 16:23 . 2012-07-18 16:23 -------- d-----w- c:\users\Roman\AppData\Roaming\Malwarebytes
2012-07-18 16:22 . 2012-07-18 16:22 -------- d-----w- c:\programdata\Malwarebytes
2012-07-18 16:22 . 2012-07-18 16:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-18 16:22 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-18 03:53 . 2012-07-18 03:53 -------- d-----w- c:\users\Roman\AppData\Local\VS Revo Group
2012-07-16 21:07 . 2012-07-16 21:06 476976 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-16 21:06 . 2012-07-16 21:06 -------- d-----w- c:\program files\Java
2012-07-15 09:35 . 2012-07-18 20:04 -------- dc----w- c:\windows\system32\DRVSTORE
2012-07-15 09:35 . 2012-07-15 09:35 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-07-15 09:33 . 2012-07-15 09:33 -------- d-----w- c:\users\Roman\AppData\Local\Sunbelt Software
2012-07-15 09:31 . 2012-07-18 20:04 -------- d-----w- c:\programdata\Lavasoft
2012-07-14 11:03 . 2012-07-14 11:04 -------- d-----w- c:\users\Roman\AppData\Roaming\Nero
2012-07-14 10:42 . 2012-07-14 10:54 -------- d-----w- c:\program files\Nero
2012-07-14 10:42 . 2012-07-14 10:58 -------- d-----w- c:\program files\Common Files\Nero
2012-07-14 10:42 . 2012-07-14 10:50 -------- d-----w- c:\programdata\Nero
2012-07-14 09:38 . 2012-07-14 09:38 -------- d-----w- c:\users\Roman\AppData\Roaming\Sony
2012-07-14 08:31 . 2012-07-14 09:38 -------- d-----w- c:\users\Roman\AppData\Local\Sony
2012-07-13 14:32 . 2012-07-13 14:32 89944 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\DSETUP.dll
2012-07-13 14:32 . 2012-07-13 14:32 537432 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\DXSETUP.exe
2012-07-13 14:32 . 2012-07-13 14:32 1801048 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\dsetup32.dll
2012-07-11 20:52 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-10 05:25 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-06-28 18:02 . 2012-05-04 17:32 191600 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-06-28 18:02 . 2012-05-04 17:32 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-06-28 18:02 . 2012-05-04 17:32 82544 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-06-28 18:02 . 2011-06-08 16:19 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll
2012-06-28 18:02 . 2011-06-08 16:19 73728 ----a-w- c:\windows\system32\nQAPO.dll
2012-06-28 18:02 . 2012-05-04 17:32 86128 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-06-28 18:02 . 2012-05-04 17:32 106608 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-06-28 18:02 . 2012-05-04 17:32 1021552 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-06-28 18:02 . 2012-05-04 17:32 218224 ----a-w- c:\windows\system32\Dts2APO.dll
2012-06-28 17:40 . 2012-06-28 17:40 -------- d-----w- c:\program files\Driver-Soft
2012-06-28 17:31 . 2012-07-17 19:06 -------- d-----w- c:\programdata\DriverGenius
2012-06-22 15:23 . 2012-06-22 15:23 138904 ----a-w- c:\users\Roman\AppData\Roaming\PnkBstrK.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-16 21:06 . 2012-03-16 17:09 472880 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-11 18:48 . 2012-03-29 12:50 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-11 18:48 . 2012-03-14 21:23 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-29 12:15 . 2012-04-26 16:22 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-06-24 18:31 . 2012-03-20 09:01 139848 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-06-24 18:31 . 2012-03-20 09:01 282696 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-06-24 18:31 . 2012-03-15 17:46 282696 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-06-22 17:58 . 2012-03-15 17:46 282696 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-06-22 15:22 . 2012-03-15 17:46 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-06-21 08:37 . 2012-06-21 08:37 3166792 ------w- c:\windows\system32\pbsvc.exe
2012-06-03 14:59 . 2012-06-03 14:59 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-06-03 14:59 . 2012-06-03 14:59 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-02 22:19 . 2012-06-19 04:41 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-19 04:41 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-19 04:41 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-19 04:41 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-19 04:41 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-19 04:41 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-19 04:41 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-19 04:41 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-19 04:41 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 04:40 . 2012-07-11 03:41 225280 ----a-w- c:\windows\system32\schannel.dll
2012-05-31 10:25 . 2012-03-14 21:12 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-05-04 17:32 . 2012-03-14 20:04 639088 ----a-w- c:\windows\system32\VIASysFx.dll
2012-05-04 17:32 . 2012-03-14 20:04 2330224 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-05-04 17:32 . 2012-03-14 20:04 1832560 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-05-01 04:44 . 2012-06-13 03:58 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 14:25 . 2012-04-28 14:25 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-28 04:41 . 2012-06-13 03:58 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-04-28 03:17 . 2012-06-13 03:58 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 16:22 . 2012-04-26 16:22 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-26 04:45 . 2012-06-13 03:58 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45 . 2012-06-13 03:58 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41 . 2012-06-13 03:58 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36 . 2012-06-13 03:58 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36 . 2012-06-13 03:58 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36 . 2012-06-13 03:58 103936 ----a-w- c:\windows\system32\cryptnet.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
"CTSysVol"="c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 57344]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2012-05-11 3920496]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /minimized /regrun
"Sidebar"=c:\program files\Windows Sidebar\sidebar.exe /autoRun
"CompuCare Check for updates"=c:\users\Roman\AppData\Roaming\SuperPump\updater.exe
"PSwitch"=c:\program files\Proxy Switcher Standard\ProxySwitcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"OPSE reminder"="c:\program files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "c:\program files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"
"OpwareSE2"="c:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
"PAC7302_Monitor"=c:\windows\PixArt\PAC7302\Monitor.exe
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
"SwitchBoard"=c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
.
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 Expresso Updater;Expresso Updater;c:\program files\Expresso\ExtensionUpdaterService.exe [x]
R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
R4 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 18:48]
.
.
------- Doplňkový sken -------
.
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: {{81727BE7-50E7-48ed-A547-F0274756E2DD} - {27CF82B1-E1D2-4f9b-976E-62095A52BA4A} -
LSP: %SYSTEMROOT%\system32\nvLsp.dll
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\System32\rundll32.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2012-07-21 13:36:28 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-07-21 11:36
ComboFix2.txt 2012-07-20 19:55
ComboFix3.txt 2012-07-19 16:21
ComboFix4.txt 2011-12-19 10:31
.
Před spuštěním: Volných bajtů: 21 165 154 304
Po spuštění: Volných bajtů: 21 130 686 464
.
- - End Of File - - 5582F7A2AB3DBF5AA27A7782F61CC06E

[Reklama]

[PARKR]

nový log

ComboFix 12-07-21.01 - Roman 21.07.2012 13:52:56.4.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3327.2275 [GMT 2:00]
Spuštěný z: c:\users\Roman\Desktop\ComboFix\ComboFix.exe
AV: avast! Internet Security *Disabled/Outdated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Internet Security *Disabled/Outdated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-21 do 2012-07-21 )))))))))))))))))))))))))))))))
.
.
2012-07-21 11:57 . 2012-07-21 11:57 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-07-21 11:57 . 2012-07-21 11:57 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-21 11:31 . 2012-07-21 11:57 -------- d-----w- c:\users\Roman\AppData\Local\temp
2012-07-21 06:08 . 2012-06-29 08:44 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{87DA0F6B-C465-4141-800B-56625F2814D8}\mpengine.dll
2012-07-19 18:01 . 2012-07-19 18:01 -------- d-----w- c:\windows\cs
2012-07-18 16:23 . 2012-07-18 16:23 -------- d-----w- c:\users\Roman\AppData\Roaming\Malwarebytes
2012-07-18 16:22 . 2012-07-18 16:22 -------- d-----w- c:\programdata\Malwarebytes
2012-07-18 16:22 . 2012-07-18 16:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-18 16:22 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-18 03:53 . 2012-07-18 03:53 -------- d-----w- c:\users\Roman\AppData\Local\VS Revo Group
2012-07-16 21:07 . 2012-07-16 21:06 476976 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-16 21:06 . 2012-07-16 21:06 -------- d-----w- c:\program files\Java
2012-07-15 09:35 . 2012-07-18 20:04 -------- dc----w- c:\windows\system32\DRVSTORE
2012-07-15 09:35 . 2012-07-15 09:35 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-07-15 09:33 . 2012-07-15 09:33 -------- d-----w- c:\users\Roman\AppData\Local\Sunbelt Software
2012-07-15 09:31 . 2012-07-18 20:04 -------- d-----w- c:\programdata\Lavasoft
2012-07-14 11:03 . 2012-07-14 11:04 -------- d-----w- c:\users\Roman\AppData\Roaming\Nero
2012-07-14 10:42 . 2012-07-14 10:54 -------- d-----w- c:\program files\Nero
2012-07-14 10:42 . 2012-07-14 10:58 -------- d-----w- c:\program files\Common Files\Nero
2012-07-14 10:42 . 2012-07-14 10:50 -------- d-----w- c:\programdata\Nero
2012-07-14 09:38 . 2012-07-14 09:38 -------- d-----w- c:\users\Roman\AppData\Roaming\Sony
2012-07-14 08:31 . 2012-07-14 09:38 -------- d-----w- c:\users\Roman\AppData\Local\Sony
2012-07-13 14:32 . 2012-07-13 14:32 89944 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\DSETUP.dll
2012-07-13 14:32 . 2012-07-13 14:32 537432 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\DXSETUP.exe
2012-07-13 14:32 . 2012-07-13 14:32 1801048 ----a-w- c:\program files\Common Files\Windows Live\.cache\4e466c701cd610401\dsetup32.dll
2012-07-11 20:52 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-10 05:25 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-06-28 18:02 . 2012-05-04 17:32 191600 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-06-28 18:02 . 2012-05-04 17:32 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-06-28 18:02 . 2012-05-04 17:32 82544 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-06-28 18:02 . 2011-06-08 16:19 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll
2012-06-28 18:02 . 2011-06-08 16:19 73728 ----a-w- c:\windows\system32\nQAPO.dll
2012-06-28 18:02 . 2012-05-04 17:32 86128 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-06-28 18:02 . 2012-05-04 17:32 106608 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-06-28 18:02 . 2012-05-04 17:32 1021552 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-06-28 18:02 . 2012-05-04 17:32 218224 ----a-w- c:\windows\system32\Dts2APO.dll
2012-06-28 17:40 . 2012-06-28 17:40 -------- d-----w- c:\program files\Driver-Soft
2012-06-28 17:31 . 2012-07-17 19:06 -------- d-----w- c:\programdata\DriverGenius
2012-06-22 15:23 . 2012-06-22 15:23 138904 ----a-w- c:\users\Roman\AppData\Roaming\PnkBstrK.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-16 21:06 . 2012-03-16 17:09 472880 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-11 18:48 . 2012-03-29 12:50 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-11 18:48 . 2012-03-14 21:23 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-29 12:15 . 2012-04-26 16:22 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-06-24 18:31 . 2012-03-20 09:01 139848 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-06-24 18:31 . 2012-03-20 09:01 282696 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-06-24 18:31 . 2012-03-15 17:46 282696 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-06-22 17:58 . 2012-03-15 17:46 282696 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-06-22 15:22 . 2012-03-15 17:46 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-06-21 08:37 . 2012-06-21 08:37 3166792 ------w- c:\windows\system32\pbsvc.exe
2012-06-03 14:59 . 2012-06-03 14:59 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-06-03 14:59 . 2012-06-03 14:59 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-02 22:19 . 2012-06-19 04:41 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-19 04:41 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-19 04:41 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-19 04:41 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-19 04:41 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-19 04:41 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-19 04:41 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-19 04:41 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-19 04:41 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 04:40 . 2012-07-11 03:41 225280 ----a-w- c:\windows\system32\schannel.dll
2012-05-31 10:25 . 2012-03-14 21:12 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-05-04 17:32 . 2012-03-14 20:04 639088 ----a-w- c:\windows\system32\VIASysFx.dll
2012-05-04 17:32 . 2012-03-14 20:04 2330224 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-05-04 17:32 . 2012-03-14 20:04 1832560 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-05-01 04:44 . 2012-06-13 03:58 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 14:25 . 2012-04-28 14:25 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-28 04:41 . 2012-06-13 03:58 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-04-28 03:17 . 2012-06-13 03:58 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 16:22 . 2012-04-26 16:22 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-26 04:45 . 2012-06-13 03:58 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45 . 2012-06-13 03:58 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41 . 2012-06-13 03:58 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36 . 2012-06-13 03:58 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36 . 2012-06-13 03:58 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36 . 2012-06-13 03:58 103936 ----a-w- c:\windows\system32\cryptnet.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
"CTSysVol"="c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 57344]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2012-05-11 3920496]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /minimized /regrun
"Sidebar"=c:\program files\Windows Sidebar\sidebar.exe /autoRun
"CompuCare Check for updates"=c:\users\Roman\AppData\Roaming\SuperPump\updater.exe
"PSwitch"=c:\program files\Proxy Switcher Standard\ProxySwitcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"OPSE reminder"="c:\program files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "c:\program files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"
"OpwareSE2"="c:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
"PAC7302_Monitor"=c:\windows\PixArt\PAC7302\Monitor.exe
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
"SwitchBoard"=c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
.
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 Expresso Updater;Expresso Updater;c:\program files\Expresso\ExtensionUpdaterService.exe [x]
R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
R4 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 18:48]
.
.
------- Doplňkový sken -------
.
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
IE: {{81727BE7-50E7-48ed-A547-F0274756E2DD} - {27CF82B1-E1D2-4f9b-976E-62095A52BA4A} -
LSP: %SYSTEMROOT%\system32\nvLsp.dll
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
Celkový čas: 2012-07-21 13:58:02
ComboFix-quarantined-files.txt 2012-07-21 11:58
ComboFix2.txt 2012-07-21 11:36
ComboFix3.txt 2012-07-20 19:55
ComboFix4.txt 2012-07-19 16:21
ComboFix5.txt 2012-07-21 11:52
.
Před spuštěním: Volných bajtů: 21 173 354 496
Po spuštění: Volných bajtů: 21 124 075 520
.
- - End Of File - - 673BA3BB28CCA800863EA903B419DC98


--------------------------------------------------------------------------------------
str.1

Tady je log ( ten neřád Babylon na GogleChrome pořád je nelze odinstalovat )

jaro3 napsal:

Combofix to neumí..Museli bychom použít OTL.

budem pracovat i s tímto programen OTL ?

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

[PARKR]

OTL logfile created on: 22.7.2012 14:19:03 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Roman\Desktop\OTL
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 62,82% Memory free
6,50 Gb Paging File | 5,29 Gb Available in Paging File | 81,49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 22,54 Gb Free Space | 51,28% Space Free | Partition Type: NTFS
Drive D: | 105,10 Gb Total Space | 25,53 Gb Free Space | 24,29% Space Free | Partition Type: NTFS

Computer Name: ROMAN-PC | User Name: Roman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Roman\Desktop\OTL\OTL.exe (OldTimer Tools)
PRC - C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe (Adobe Systems, Inc.)
PRC - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
PRC - C:\Program Files\Firefox 4\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Firefox 4\plugin-container.exe (Mozilla Corporation)
PRC - C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)


========== Modules (No Company Name) ==========

MOD - C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
MOD - C:\Program Files\VIA\VIAudioi\VDeck\QsApoApi.dll ()
MOD - C:\Program Files\VIA\VIAudioi\VDeck\Dts2ApoApi.dll ()
MOD - C:\Program Files\Firefox 4\mozjs.dll ()
MOD - C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()


========== Win32 Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (VIAKaraokeService) -- C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (Expresso Updater) -- C:\Program Files\Expresso\ExtensionUpdaterService.exe ()
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (avast! Firewall) -- C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
SRV - (nSvcIp) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)


========== Driver Services (SafeList) ==========

DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (catchme) -- C:\Users\Roman\AppData\Local\Temp\catchme.sys File not found
DRV - (aohvdf0o) -- File not found
DRV - (VIAHdAudAddService) -- C:\Windows\System32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (sptd) -- C:\Windows\System32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (aswFW) -- C:\Windows\System32\drivers\aswFW.sys (AVAST Software)
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswNdis2) -- C:\Windows\System32\drivers\aswNdis2.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (aswNdis) -- C:\Windows\System32\drivers\aswNdis.sys (ALWIL Software)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (tsusbhub) -- C:\Windows\System32\drivers\tsusbhub.sys (Microsoft Corporation)
DRV - (Synth3dVsc) -- C:\Windows\System32\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (terminpt) -- C:\Windows\System32\drivers\terminpt.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (NVNET) -- C:\Windows\System32\drivers\nvmf6232.sys (NVIDIA Corporation)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ASACPI.sys ()
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvm62x32.sys (NVIDIA Corporation)
DRV - (PAC7302) -- C:\Windows\System32\drivers\PAC7302.SYS (PixArt Imaging Inc.)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (P17) -- C:\Windows\System32\drivers\P17.sys (Creative Technology Ltd.)
DRV - (AsIO) -- C:\Windows\System32\drivers\AsIO.sys ()
DRV - (MarvinBus) -- C:\Windows\System32\drivers\MarvinBus.sys (Pinnacle Systems GmbH)
DRV - (ossrv) -- C:\Windows\System32\drivers\CTOSS2K.SYS (Creative Technology Ltd.)
DRV - (ctsfm2k) -- C:\Windows\System32\drivers\CTSFM2K.SYS (Creative Technology Ltd)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=111881&tt=100512_4_&babsrc=SP_ss&mntrId=ac13633f00000000000090e6ba780b98
IE - HKCU\..\SearchScopes\{92098370-CA5F-46E3-B750-967079BC3C78}: "URL" = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=en_EU&apn_ptnrs=T8&apn_dtid=YYYYYYYYCZ&apn_uid=32a827fa-0675-4609-acda-6d2406e77a6a&apn_sauid=0ED529F1-8031-47FD-8E2E-7FC478FD3231
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Roman\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Roman\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.03.14 22:40:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\support@2yourface.com: C:\Program Files\2YourFace\ffextension [2012.05.18 21:22:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A6629839-6636-4998-95D6-2B0F52141861}: C:\Program Files\Expresso\Firefox [2012.05.18 21:23:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Firefox 4\components [2012.05.10 06:02:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\support@2yourface.com: C:\Program Files\2YourFace\ffextension [2012.05.18 21:22:31 | 000,000,000 | ---D | M]

[2012.03.15 12:25:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Roman\AppData\Roaming\Mozilla\Extensions
[2012.07.18 22:25:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\extensions
[2012.05.18 21:23:06 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2012.05.20 07:45:54 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012.07.18 22:25:11 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2012.05.09 20:22:09 | 000,002,324 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\searchplugins\askcom.xml
[2012.05.18 21:22:31 | 000,000,000 | ---D | M] (2YourFace) -- C:\PROGRAM FILES\2YOURFACE\FFEXTENSION
[2012.03.14 22:40:23 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2012.05.18 21:23:48 | 000,000,000 | ---D | M] (Expresso) -- C:\PROGRAM FILES\EXPRESSO\FIREFOX
[2012.05.18 21:24:13 | 000,000,000 | ---D | M] (z) -- C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{3091CFF6-26B1-E33C-3F50-A2A4FAE75FDE}
[2012.07.16 23:07:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

========== Chrome ==========

CHR - homepage: http://search.babylon.com/?affID=111881 ... e6ba780b98
CHR - default_search_provider: \u010CSFD (Enabled)
CHR - default_search_provider: search_url = http://www.csfd.cz/hledat/?q={searchTerms}
CHR - default_search_provider: suggest_url =
CHR - homepage: http://search.babylon.com/?affID=111881 ... e6ba780b98
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Roman\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Roman\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Roman\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.5_0\BabylonChromeToolBar.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Tampermonkey = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\2.5.29_0\
CHR - Extension: Expresso = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdmjeclekijlogbipdlifcmgoanoemm\2.0.0.410_0\
CHR - Extension: avast! WebRep = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1367_0\
CHR - Extension: Gmail = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.07.21 13:33:56 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [OPSE reminder] C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe (ScanSoft, Inc.)
O4 - HKLM..\Run: [OpwareSE2] C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe (ScanSoft, Inc.)
O4 - HKLM..\Run: [P17RunE] C:\Windows\System32\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O9 - Extra Button: Search Fairy - {81727BE7-50E7-48ed-A547-F0274756E2DD} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Search Fairy options - {81727BE7-50E7-48ed-A547-F0274756E2DD} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([*] https in Trusted sites)
O15 - HKCU\..Trusted Domains: mojebanka.cz ([*] https in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2E2848A1-2427-4AD1-B408-1AE3CC62A625}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O27 - HKLM IFEO\omnipage.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012.07.22 14:15:31 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\OTL
[2012.07.22 12:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.07.21 22:47:13 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\Školní sešity
[2012.07.21 22:30:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2012.07.21 22:30:15 | 000,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information
[2012.07.21 22:30:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP450
[2012.07.21 22:30:00 | 000,198,656 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMLM7I.DLL
[2012.07.21 22:29:58 | 000,139,264 | ---- | C] (Canon Inc.) -- C:\Windows\System32\CNCL450.DLL
[2012.07.21 22:29:58 | 000,037,888 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNCI450.DLL
[2012.07.21 22:29:57 | 000,195,072 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNCC450.DLL
[2012.07.21 22:29:32 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2012.07.21 22:20:54 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\ScanSoft
[2012.07.21 22:20:53 | 000,000,000 | ---D | C] -- C:\ProgramData\SSScanWizard
[2012.07.21 22:20:53 | 000,000,000 | ---D | C] -- C:\ProgramData\SSScanAppDataDir
[2012.07.21 22:20:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 2.0
[2012.07.21 22:20:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ScanSoft Shared
[2012.07.21 22:20:38 | 000,000,000 | ---D | C] -- C:\Program Files\ScanSoft
[2012.07.21 22:19:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoStudio 5.5
[2012.07.21 22:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2012.07.21 22:17:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
[2012.07.21 21:25:27 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{18E4F94E-FB58-42E7-8048-42C0EE49D6AC}
[2012.07.21 21:25:17 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{5F9C6876-401A-4DCA-AFFA-0CF5B30DDA29}
[2012.07.21 20:26:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJEPPEX2
[2012.07.21 20:26:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonEPP
[2012.07.21 19:58:41 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012.07.21 17:35:56 | 000,000,000 | ---D | C] -- C:\TEMP
[2012.07.21 13:57:43 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012.07.21 13:31:44 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\temp
[2012.07.19 20:07:43 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{21189D6F-6190-423E-AF21-5BCFBA427CAB}
[2012.07.19 20:07:32 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{DB901970-7589-40A4-B7AF-70D3D2E0A02A}
[2012.07.19 20:01:53 | 000,000,000 | ---D | C] -- C:\Windows\cs
[2012.07.19 19:57:57 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{32287815-722E-4165-8CB8-DDA2378C6AC3}
[2012.07.19 19:57:46 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{BCED0908-8E53-4F25-AB4F-341427EE7221}
[2012.07.19 19:24:35 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\avatar pc help
[2012.07.19 18:11:58 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012.07.18 18:23:42 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Malwarebytes
[2012.07.18 18:22:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.07.18 18:22:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.07.18 18:22:03 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.07.18 18:22:03 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.07.18 05:53:51 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\VS Revo Group
[2012.07.16 23:07:00 | 000,476,976 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\npdeployJava1.dll
[2012.07.16 23:07:00 | 000,157,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012.07.16 23:07:00 | 000,149,296 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012.07.16 23:07:00 | 000,149,296 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012.07.16 23:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012.07.16 19:34:06 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{BFF83CD8-1583-4547-B6FD-419476871755}
[2012.07.16 19:27:25 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{E17EA1FD-6C64-48BC-A382-A3950308BEBE}
[2012.07.16 19:27:14 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{2EF4E429-2F68-498E-AFFD-539EC61DE024}
[2012.07.16 18:49:44 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{23B35301-907D-4C22-ACDE-57E68D19583C}
[2012.07.16 18:49:33 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{53703438-21B7-4812-8BDA-47E9E0B97635}
[2012.07.16 18:34:23 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{CA250E3D-C547-4F66-910A-5EAC99FFDA2E}
[2012.07.16 18:34:08 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{BCFC3BFA-26D2-4FB1-A9E8-2FAAD9F57DC2}
[2012.07.15 11:35:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2012.07.15 11:35:51 | 000,101,720 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2012.07.15 11:33:41 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Sunbelt Software
[2012.07.15 11:31:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2012.07.14 13:03:35 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Nero
[2012.07.14 12:44:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2012.07.14 12:42:58 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2012.07.14 12:42:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2012.07.14 12:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2012.07.14 11:38:01 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Sony
[2012.07.14 10:31:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Sony
[2012.07.13 17:10:31 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{3CF2E918-FB09-4C2B-A6E5-88747C02EDC9}
[2012.07.13 17:10:21 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{8AB86B8F-0B53-432E-B674-656A37735932}
[2012.07.13 17:10:00 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{C170C16E-39F0-4708-8246-5E641F3E43DC}
[2012.07.13 17:09:39 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{80E9786B-3113-4D96-B730-9A3E398F3298}
[2012.07.13 16:32:40 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{7444D0AE-9D22-4D9D-9E42-E9F8045191CF}
[2012.07.13 16:32:13 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{60F0B48C-F103-423D-8C91-2A4151CA923A}
[2012.07.13 16:31:22 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{2CC3E3C1-31B9-43F5-8996-EC42446821C9}
[2012.07.13 16:31:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{B1E7CB94-328F-43E1-A44D-F56909BBF7BC}
[2012.07.13 16:30:53 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{4750683E-C4CA-4398-A3A9-FCB5DE007C60}
[2012.07.13 16:30:31 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{73CA5B56-972F-4269-ADCA-DF68973C2E9B}
[2012.07.13 10:33:01 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{EEC2BCC1-244D-4503-9A10-FAECE773C62D}
[2012.07.13 10:32:41 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\{9C1519A8-4B0E-42AD-9B0C-FD9ED7F76FEF}
[2012.07.11 22:54:47 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012.07.11 22:54:46 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012.07.11 22:54:46 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012.07.11 22:54:46 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012.07.11 22:54:45 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012.07.11 22:54:45 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012.07.11 22:54:44 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012.07.11 22:52:37 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012.07.11 05:41:14 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012.07.11 05:41:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2012.07.11 05:41:10 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2012.07.10 07:25:33 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2012.07.01 10:02:05 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\intrusion2
[2012.06.28 20:02:58 | 000,191,600 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\ViaMicArrayAPO.dll
[2012.06.28 20:02:58 | 000,082,544 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\Dts2PropPageExt.dll
[2012.06.28 20:02:58 | 000,076,288 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\System32\nQPropPageExt.dll
[2012.06.28 20:02:58 | 000,073,728 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\System32\nQAPO.dll
[2012.06.28 20:02:58 | 000,027,760 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\ViakaraokeSrv.exe
[2012.06.28 20:02:57 | 001,021,552 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\ViaKaraokeApo.dll
[2012.06.28 20:02:57 | 000,106,608 | ---- | C] (VIA Technologies,Inc.) -- C:\Windows\System32\ViaKaraokePropPageExt.dll
[2012.06.28 20:02:57 | 000,086,128 | ---- | C] (VIA Technologies,Inc.) -- C:\Windows\System32\ViaMicArrayPropPageExt.dll
[2012.06.28 20:02:55 | 000,218,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\Dts2APO.dll
[2012.06.28 19:41:12 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius
[2012.06.28 19:40:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition
[2012.06.28 19:40:01 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2012.06.28 19:31:37 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2012.06.27 17:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2K Games
[2012.06.22 17:26:13 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\Ubisoft
[2012.03.24 20:26:06 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Roman\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2012.07.22 13:48:11 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.07.22 12:28:43 | 000,000,971 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.07.22 10:27:44 | 000,021,280 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.07.22 10:27:44 | 000,021,280 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.07.22 10:21:43 | 000,139,848 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.07.22 10:21:22 | 000,282,696 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012.07.22 10:20:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.07.22 09:52:19 | 000,282,696 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012.07.21 22:42:44 | 000,003,539 | ---- | M] () -- C:\Users\Roman\Desktop\Skenování fotografií nebo dokumentů – zástupce.lnk
[2012.07.21 22:20:53 | 000,000,532 | ---- | M] () -- C:\Windows\MAXLINK.INI
[2012.07.21 22:18:59 | 000,001,119 | ---- | M] () -- C:\Users\Public\Desktop\Easy-PhotoPrint.lnk
[2012.07.21 22:17:41 | 000,002,004 | ---- | M] () -- C:\Users\Public\Desktop\MP Navigator 2.0.lnk
[2012.07.21 22:17:21 | 000,002,224 | ---- | M] () -- C:\Users\Public\Desktop\MP450 Manuál na obrazovce.lnk
[2012.07.21 22:10:50 | 000,087,608 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\inst.exe
[2012.07.21 22:10:50 | 000,047,360 | ---- | M] (VSO Software) -- C:\Users\Roman\AppData\Roaming\pcouffin.sys
[2012.07.21 22:10:50 | 000,007,887 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\pcouffin.cat
[2012.07.21 22:10:50 | 000,001,144 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\pcouffin.inf
[2012.07.21 19:52:58 | 000,631,054 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.07.21 19:52:58 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.07.21 19:52:58 | 000,121,708 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.07.21 19:52:58 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.07.21 13:33:56 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012.07.19 19:27:16 | 000,001,480 | ---- | M] () -- C:\Users\Roman\AppData\Local\Adobe Uložit pro web 12.0 Prefs
[2012.07.18 22:46:37 | 000,000,017 | ---- | M] () -- C:\Users\Roman\AppData\Local\resmon.resmoncfg
[2012.07.18 18:22:05 | 000,001,073 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.18 16:32:10 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012.07.18 16:32:10 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012.07.16 23:06:53 | 000,476,976 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\npdeployJava1.dll
[2012.07.16 23:06:53 | 000,472,880 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012.07.16 23:06:53 | 000,157,488 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012.07.16 23:06:53 | 000,149,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012.07.16 23:06:53 | 000,149,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012.07.15 11:35:50 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2012.07.14 12:50:12 | 000,002,710 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2012.07.13 05:44:05 | 000,002,405 | ---- | M] () -- C:\Users\Roman\Desktop\Google Chrome.lnk
[2012.07.11 23:09:58 | 000,000,016 | ---- | M] () -- C:\Windows\ka.ini
[2012.07.11 22:57:50 | 003,691,752 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.07.11 20:48:15 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012.07.11 20:48:15 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012.07.03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.06.28 20:03:09 | 000,001,090 | ---- | M] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012.06.28 19:40:02 | 000,001,171 | ---- | M] () -- C:\Users\Roman\Desktop\Driver Genius Professional Edition.lnk
[2012.06.27 17:45:59 | 000,001,702 | ---- | M] () -- C:\Users\Public\Desktop\Spec Ops The Line.lnk
[2012.06.22 17:23:33 | 000,138,904 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\PnkBstrK.sys

========== Files Created - No Company Name ==========

[2012.07.22 12:28:43 | 000,000,971 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.07.21 22:42:44 | 000,003,539 | ---- | C] () -- C:\Users\Roman\Desktop\Skenování fotografií nebo dokumentů – zástupce.lnk
[2012.07.21 22:20:53 | 000,000,532 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2012.07.21 22:18:59 | 000,001,119 | ---- | C] () -- C:\Users\Public\Desktop\Easy-PhotoPrint.lnk
[2012.07.21 22:17:41 | 000,002,004 | ---- | C] () -- C:\Users\Public\Desktop\MP Navigator 2.0.lnk
[2012.07.21 22:10:50 | 000,087,608 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\inst.exe
[2012.07.18 22:46:37 | 000,000,017 | ---- | C] () -- C:\Users\Roman\AppData\Local\resmon.resmoncfg
[2012.07.18 18:22:05 | 000,001,073 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.15 11:36:12 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2012.07.15 11:36:12 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2012.07.14 12:50:12 | 000,002,710 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2012.07.08 22:14:43 | 000,000,947 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.lnk
[2012.07.08 22:13:40 | 000,000,921 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.lnk
[2012.07.08 22:13:18 | 000,000,984 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.lnk
[2012.07.08 22:11:48 | 000,001,041 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.lnk
[2012.06.28 20:03:09 | 000,001,090 | ---- | C] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012.06.28 20:03:08 | 000,001,102 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
[2012.06.28 19:40:02 | 000,001,171 | ---- | C] () -- C:\Users\Roman\Desktop\Driver Genius Professional Edition.lnk
[2012.06.27 17:45:59 | 000,001,702 | ---- | C] () -- C:\Users\Public\Desktop\Spec Ops The Line.lnk
[2012.06.22 17:23:33 | 000,138,904 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\PnkBstrK.sys
[2012.06.21 10:37:14 | 003,166,792 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2012.04.25 19:36:37 | 000,000,016 | ---- | C] () -- C:\Windows\ka.ini
[2012.03.24 20:26:06 | 000,007,887 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\pcouffin.cat
[2012.03.24 20:26:06 | 000,001,144 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\pcouffin.inf
[2012.03.20 17:11:17 | 000,001,480 | ---- | C] () -- C:\Users\Roman\AppData\Local\Adobe Uložit pro web 12.0 Prefs
[2012.03.20 11:01:48 | 000,139,848 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.03.19 21:57:00 | 000,005,632 | ---- | C] () -- C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.03.15 19:46:49 | 000,282,696 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012.03.15 19:46:47 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012.03.15 12:25:28 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2012.03.15 00:48:58 | 000,000,291 | ---- | C] () -- C:\Windows\System32\Remover.ini
[2012.03.15 00:48:57 | 000,000,885 | ---- | C] () -- C:\Windows\System32\SP7302.ini
[2012.03.15 00:10:00 | 000,000,029 | ---- | C] () -- C:\Windows\sfbm.INI
[2012.03.14 22:28:55 | 000,008,704 | ---- | C] () -- C:\Windows\System32\CNMVS7I.DLL
[2012.03.14 22:06:40 | 000,024,576 | ---- | C] () -- C:\Windows\System32\AsIO.dll
[2012.03.14 22:06:40 | 000,012,400 | ---- | C] () -- C:\Windows\System32\drivers\AsIO.sys
[2012.03.14 22:06:36 | 000,011,832 | ---- | C] () -- C:\Windows\System32\drivers\AsInsHelp64.sys
[2012.03.14 22:06:36 | 000,010,216 | ---- | C] () -- C:\Windows\System32\drivers\AsInsHelp32.sys
[2012.03.14 22:00:40 | 000,011,164 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2012.03.14 21:58:55 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012.03.14 21:58:53 | 000,020,594 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2012.02.29 13:26:56 | 000,416,064 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010.11.21 03:16:19 | 000,631,054 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2010.11.21 03:16:19 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2010.11.21 03:16:19 | 000,121,708 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2010.11.21 03:16:19 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2010.11.20 23:29:34 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2010.11.20 23:29:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

========== LOP Check ==========

[2012.03.14 22:38:05 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\avv
[2012.03.15 10:46:49 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\BSplayer
[2012.03.15 10:43:01 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\BSplayer Pro
[2012.07.21 22:36:52 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Canon
[2012.03.20 16:40:02 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.07.22 12:34:26 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
[2012.03.19 23:24:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\FudaTech
[2012.03.15 19:46:46 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\PunkBuster
[2012.07.21 22:20:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\ScanSoft
[2012.07.14 11:38:01 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Sony
[2012.07.19 17:55:23 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\SuperPump
[2012.05.18 21:22:14 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\SystemUpdaterApp
[2012.03.18 22:10:33 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TeamViewer
[2012.05.09 19:43:10 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Thinstall
[2012.03.15 01:30:46 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TuneUp Software
[2012.06.22 17:07:53 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Ubisoft
[2012.07.22 12:34:26 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Vso
[2012.04.29 22:22:22 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\WNR
[2012.05.23 05:48:47 | 000,032,618 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

[PARKR]

OTL Extras logfile created on: 22.7.2012 14:19:03 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Roman\Desktop\OTL
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 62,82% Memory free
6,50 Gb Paging File | 5,29 Gb Available in Paging File | 81,49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 22,54 Gb Free Space | 51,28% Space Free | Partition Type: NTFS
Drive D: | 105,10 Gb Total Space | 25,53 Gb Free Space | 24,29% Space Free | Partition Type: NTFS

Computer Name: ROMAN-PC | User Name: Roman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- D:\utility\Photoshop\instalace\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03A12DC4-D4E5-429B-9A04-5FF2EE80951E}" = lport=138 | protocol=17 | dir=in | app=system |
"{0CA5836F-62D1-4BC6-BE50-25F83CE1BFAF}" = rport=139 | protocol=6 | dir=out | app=system |
"{0DF3B23F-3F63-498E-AED8-2209C9C03185}" = rport=10243 | protocol=6 | dir=out | app=system |
"{152151DE-4C7D-45FC-B3C4-F0E942AB60B9}" = lport=2869 | protocol=6 | dir=in | app=system |
"{22D011DB-236E-4DBB-AEDD-3C3C592609EB}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{30D3CA80-B919-4199-AA5D-C51D5EB716CE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{43104B54-09E8-4447-B57D-701CA4D24692}" = rport=137 | protocol=17 | dir=out | app=system |
"{4D22F947-5F4B-4D11-9FA2-00DF2F17278D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{56F4B014-C457-4904-A4FA-93A9C6BF9A54}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5C5BDFC5-C291-461C-A1F0-4004EB2AC9DE}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{65DFF7BE-F520-4442-8AD8-BA73066EDCCB}" = lport=139 | protocol=6 | dir=in | app=system |
"{687835F1-72A0-43D1-AD81-96207C842361}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{7D081526-9578-463A-9779-B7CD8BC98795}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{80B21880-DD05-4F52-82D4-1B7641358464}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{858A54B5-D28E-42DA-B337-09FF42BD8E56}" = rport=138 | protocol=17 | dir=out | app=system |
"{99302357-C229-49D2-BAE9-00C5548F3AE6}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{ABAB89C1-0522-4CB9-9C96-E2AADCA8A62F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B3D557E4-F66C-4F67-899E-B384FFBA621F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B7AE7160-96DD-4709-A71F-328ED6C4054C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D46B305F-3A47-4912-82FA-E1F70B3D0C2F}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EE382474-27CA-49D2-99D6-53A0C9D79A06}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EFED97DA-A66A-4F49-940A-594F48113A85}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F57D85F1-7A11-4B16-A725-E98B17533FDC}" = rport=445 | protocol=6 | dir=out | app=system |
"{FA7CFE13-14AB-4505-926A-7D8D399568BB}" = lport=445 | protocol=6 | dir=in | app=system |
"{FE53E9CE-EB7D-4A37-9854-D8A169156042}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03E94F0A-E5BF-405B-9C82-130226742B1F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{06BE6EBF-3FF7-40F2-9250-26A4803ECC33}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0A072CDD-9B1F-4D22-9ACB-2C0A05E0DD06}" = protocol=6 | dir=in | app=d:\program files\hry\tom clanys\instalace\gu.exe |
"{0B94FFF3-3E59-49FF-BE2D-64ADFBC1233B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0C60B68D-4453-4C70-AD8A-B6159946E971}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0CD8D5D4-AA54-4DBC-A712-91A24A14F5A8}" = protocol=6 | dir=in | app=c:\program files\proxy switcher standard\proxyswitcher.exe |
"{19D84495-04C6-42CC-8E98-E4DA78CA81F7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{1F0ED610-5E77-4831-B127-5E770B1C9301}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{28E63B3D-DA7C-4469-A77C-50D61FBC3A9E}" = protocol=17 | dir=in | app=d:\program files\hry\max payne 3\playmaxpayne3.exe |
"{2AD75CC0-10AE-4797-A9FE-F8BD14DF41C2}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{3A3EA041-BA7E-40DE-99AA-9DC8C87ED03F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5011D2C0-08A5-46D3-95E5-CB5CD90163AD}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{5D57085E-DC96-4FE3-ABBA-579F17715E7D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{65ADF0B0-C160-4087-B5C6-85DAFA7EC518}" = protocol=6 | dir=out | app=system |
"{67E6F31F-10EF-4C51-8883-55190E2D4C66}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{6DFA3926-6BB4-4016-AD62-A87DDAB5FC2D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{701F5E06-366D-4530-9025-EE17E4FFF5B7}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{7210BB1D-F365-427D-BF48-9DF6E62BBD18}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{7949AF80-691B-4BC0-A16C-67ECB8BA7DFB}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{80311910-2565-4540-8437-8B8D0B015A0F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{83FE6E97-29BA-48C7-A5E3-C3197C3F491F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8EAF8993-5EDB-4864-804B-530933467DE8}" = protocol=17 | dir=in | app=d:\program files\hry\tom clanys\instalace\gu.exe |
"{95C6C258-7F1E-41C4-841E-ABF20B61BA49}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{95F2B4DD-D865-483C-B336-FB9F91994F90}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{97FDC9CC-30A0-4F13-8FE7-4CE1ACC2EC97}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9B2B9F59-7816-45CD-823A-1FD5B44C5622}" = protocol=17 | dir=in | app=d:\program files\hry\tom clanys\instalace\future soldier.exe |
"{9FD87541-09F5-4344-8022-FB230E550EB3}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A8C25B47-A972-4D1C-A6E5-4F00748202CD}" = protocol=6 | dir=in | app=d:\program files\hry\tom clanys\instalace\future soldier.exe |
"{AEEFF993-DEA2-4B24-9653-66F9B7EF2556}" = protocol=6 | dir=in | app=d:\program files\hry\max payne 3\playmaxpayne3.exe |
"{B10720B0-264D-4B4D-8EA3-5339B4470D26}" = protocol=17 | dir=in | app=c:\program files\proxy switcher standard\proxyswitcher.exe |
"{BFCB61A0-60EB-49CB-9125-9BEE63680932}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{C847AD0E-2BA2-4764-BB69-5EF9239736E0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{CB98A19E-1585-424D-97A1-2C4EEAF104BB}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{D28166F9-133B-4048-B254-4FD01E9CFC84}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{D9B4D9EF-ADDA-44F0-B089-8E018DE0541D}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{ED6E9E31-96E7-4382-8A59-C34BCE2D95EC}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"TCP Query User{1E7A4024-B86A-4EEB-AEF9-CDEA1B8E63F2}D:\program files\hry\max payne 3\maxpayne3.exe" = protocol=6 | dir=in | app=d:\program files\hry\max payne 3\maxpayne3.exe |
"TCP Query User{927F71ED-DD52-4EFA-A784-2DF0017983C7}D:\program files\hry\tom clanys\instalace\future soldier.exe" = protocol=6 | dir=in | app=d:\program files\hry\tom clanys\instalace\future soldier.exe |
"TCP Query User{F92A404B-45DD-4EC6-8DA7-8C3126724D79}C:\users\roman\appdata\roaming\superpump\pumpa.exe" = protocol=6 | dir=in | app=c:\users\roman\appdata\roaming\superpump\pumpa.exe |
"UDP Query User{403FCC2E-C56F-4356-A1A6-652E75CC9CC8}C:\users\roman\appdata\roaming\superpump\pumpa.exe" = protocol=17 | dir=in | app=c:\users\roman\appdata\roaming\superpump\pumpa.exe |
"UDP Query User{642ED237-C2F6-41EC-9032-E64D8D575177}D:\program files\hry\max payne 3\maxpayne3.exe" = protocol=17 | dir=in | app=d:\program files\hry\max payne 3\maxpayne3.exe |
"UDP Query User{658558ED-74CC-43E7-BDB2-0E83BEB4BF24}D:\program files\hry\tom clanys\instalace\future soldier.exe" = protocol=17 | dir=in | app=d:\program files\hry\tom clanys\instalace\future soldier.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US)
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 33
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6D87CAD9-9B94-4421-A439-B25F8DE14575}" = Tom Clancy's Ghost Recon Future Soldier
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74F923F2-2B11-4E2E-B638-A1772A9F7B7B}" = Eye 312
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{79D5997E-BF79-48BB-8B41-9BE59C15C2D7}" = OmniPage SE 2.0
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{85309D89-7BE9-4094-BB17-24999C6118FC}" = ArcSoft PhotoStudio 5.5
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-00AF-0405-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2AC00C-0C06-4B7E-97A4-A833808D54D6}" = EPU
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A6629839-6636-4998-95D6-2B0F52141861}_is1" = Expresso 2.0.0.410
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Czech
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.0213
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.7.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C8E9B58D-637E-4E4D-B3BD-DCB1F14DBA9F}" = Activision(R)
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF23AFD7-3078-4134-8823-EBF6D1FE6FAD}" = Canon MP450
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{d2d227b3-cf33-4835-8f93-988bcb377b1b}" = Nero 9
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"2YourFace" = 2YourFace 1.0
"7-Zip" = 7-Zip 4.65
"AAA Logo 2009 Business_is1" = AAA Logo 2009 Business Edition 3.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aTube Catcher" = aTube Catcher
"avast" = avast! Internet Security
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"DAEMON Tools Lite" = DAEMON Tools Lite
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"DVDFab 6_is1" = DVDFab 6.2.0.5 (11/11/2009)
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-WebPrint" = Easy-WebPrint
"FastStone Capture" = FastStone Capture 5.3
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{C8E9B58D-637E-4E4D-B3BD-DCB1F14DBA9F}" = Ice Age(TM) 4 - Continental Drift - Arctic Games
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.62.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 12.0 (x86 cs)" = Mozilla Firefox 12.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator 2.0" = Canon MP Navigator 2.0
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"ProxySwitcher Standard_is1" = ProxySwitcher Standard
"PunkBusterSvc" = PunkBuster Services
"Rockstar Games Social Club" = Rockstar Games Social Club
"Search Fairy" = Search Fairy
"Spec Ops The Line_is1" = Spec Ops The Line
"TeamViewer 7" = TeamViewer 7
"Total Video Converter 3.12_is1" = Total Video Converter 3.12 080330
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 21.7.2012 15:27:13 | Computer Name = Roman-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: MSETUP4.EXE, verze: 4.3.0.110, časové razítko:
0x42894129 Název chybujícího modulu: MSETUP4.EXE, verze: 4.3.0.110, časové razítko:
0x42894129 Kód výjimky: 0xc0000005 Posun chyby: 0x00026d80 ID chybujícího procesu:
0xe68 Čas spuštění chybující aplikace: 0x01cd6776d1547f30 Cesta k chybující aplikaci:
E:\MSETUP4.EXE Cesta k chybujícímu modulu: E:\MSETUP4.EXE ID zprávy: 12873330-d36a-11e1-8d2e-90e6ba780b98

Error - 21.7.2012 15:32:24 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.7.2012 16:07:27 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.7.2012 16:14:57 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.7.2012 16:19:24 | Computer Name = Roman-PC | Source = VSS | ID = 8194
Description =

Error - 21.7.2012 16:29:47 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.7.2012 16:34:51 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 22.7.2012 2:49:36 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

Error - 22.7.2012 3:06:05 | Computer Name = Roman-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku 3. Hodnota
MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version
v prvku assemblyIdentity je neplatná.

Error - 22.7.2012 4:21:48 | Computer Name = Roman-PC | Source = WinMgmt | ID = 10
Description =

[ Media Center Events ]
Error - 3.6.2012 8:58:16 | Computer Name = Roman-PC | Source = MCUpdate | ID = 0
Description = 14:58:15 - Chyba při připojování k Internetu 14:58:15 - Nelze kontaktovat
server..

Error - 3.6.2012 8:58:31 | Computer Name = Roman-PC | Source = MCUpdate | ID = 0
Description = 14:58:21 - Chyba při připojování k Internetu 14:58:21 - Nelze kontaktovat
server..

Error - 3.6.2012 9:58:54 | Computer Name = Roman-PC | Source = MCUpdate | ID = 0
Description = 15:58:53 - Chyba při připojování k Internetu 15:58:54 - Nelze kontaktovat
server..

Error - 3.6.2012 9:59:09 | Computer Name = Roman-PC | Source = MCUpdate | ID = 0
Description = 15:58:59 - Chyba při připojování k Internetu 15:58:59 - Nelze kontaktovat
server..

[ System Events ]
Error - 21.7.2012 14:59:11 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 21.7.2012 15:05:27 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7001
Description = Služba Zprostředkovatel domácích skupin závisí na službě Hostitel
poskytovatele rozpoznávání funkce, která neuspěla při spuštění v důsledku následující
chyby: %%1058

Error - 21.7.2012 15:07:20 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 21.7.2012 15:07:20 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 21.7.2012 15:31:05 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7001
Description = Služba Zprostředkovatel domácích skupin závisí na službě Hostitel
poskytovatele rozpoznávání funkce, která neuspěla při spuštění v důsledku následující
chyby: %%1058

Error - 21.7.2012 15:32:57 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 21.7.2012 15:32:57 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 21.7.2012 16:06:04 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7001
Description = Služba Zprostředkovatel domácích skupin závisí na službě Hostitel
poskytovatele rozpoznávání funkce, která neuspěla při spuštění v důsledku následující
chyby: %%1058

Error - 21.7.2012 16:08:01 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 21.7.2012 16:08:01 | Computer Name = Roman-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069


< End of report >

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (catchme) -- C:\Users\Roman\AppData\Local\Temp\catchme.sys File not found
DRV - (aohvdf0o) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=111881&tt=100512_4_&babsrc=SP_ss&mntrId=ac13633f00000000000090e6ba780b98
IE - HKCU\..\SearchScopes\{92098370-CA5F-46E3-B750-967079BC3C78}: "URL" = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=en_EU&apn_ptnrs=T8&apn_dtid=YYYYYYYYCZ&apn_uid=32a827fa-0675-4609-acda-6d2406e77a6a&apn_sauid=0ED529F1-8031-47FD-8E2E-7FC478FD3231
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
[2012.03.15 12:25:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Roman\AppData\Roaming\Mozilla\Extensions
[2012.05.09 20:22:09 | 000,002,324 | ---- | M] () -- C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\searchplugins\askcom.xml
[2012.07.16 23:07:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
CHR - homepage: http://search.babylon.com/?affID=111881 ... e6ba780b98
CHR - homepage: http://search.babylon.com/?affID=111881 ... e6ba780b98
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.5_0\BabylonChromeToolBar.dll
O1 HOSTS File: ([2012.07.21 13:33:56 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra Button: Search Fairy - {81727BE7-50E7-48ed-A547-F0274756E2DD} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Search Fairy options - {81727BE7-50E7-48ed-A547-F0274756E2DD} - Reg Error: Key error. File not found
[2012.07.21 19:52:58 | 000,631,054 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.07.21 19:52:58 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.07.21 19:52:58 | 000,121,708 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.07.21 19:52:58 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.11.21 03:16:19 | 000,631,054 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2010.11.21 03:16:19 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2010.11.21 03:16:19 | 000,121,708 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2010.11.21 03:16:19 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Users\Roman\AppData\Local\{18E4F94E-FB58-42E7-8048-42C0EE49D6AC}
C:\Users\Roman\AppData\Local\{5F9C6876-401A-4DCA-AFFA-0CF5B30DDA29}
C:\Users\Roman\AppData\Local\{21189D6F-6190-423E-AF21-5BCFBA427CAB}
C:\Users\Roman\AppData\Local\{DB901970-7589-40A4-B7AF-70D3D2E0A02A}
C:\Users\Roman\AppData\Local\{32287815-722E-4165-8CB8-DDA2378C6AC3}
C:\Users\Roman\AppData\Local\{BCED0908-8E53-4F25-AB4F-341427EE7221}
C:\Users\Roman\AppData\Local\{BFF83CD8-1583-4547-B6FD-419476871755}
C:\Users\Roman\AppData\Local\{E17EA1FD-6C64-48BC-A382-A3950308BEBE}
C:\Users\Roman\AppData\Local\{2EF4E429-2F68-498E-AFFD-539EC61DE024}
C:\Users\Roman\AppData\Local\{23B35301-907D-4C22-ACDE-57E68D19583C}
C:\Users\Roman\AppData\Local\{53703438-21B7-4812-8BDA-47E9E0B97635}
C:\Users\Roman\AppData\Local\{CA250E3D-C547-4F66-910A-5EAC99FFDA2E}
C:\Users\Roman\AppData\Local\{BCFC3BFA-26D2-4FB1-A9E8-2FAAD9F57DC2}
C:\Users\Roman\AppData\Local\{3CF2E918-FB09-4C2B-A6E5-88747C02EDC9}
C:\Users\Roman\AppData\Local\{8AB86B8F-0B53-432E-B674-656A37735932}
C:\Users\Roman\AppData\Local\{C170C16E-39F0-4708-8246-5E641F3E43DC}
C:\Users\Roman\AppData\Local\{80E9786B-3113-4D96-B730-9A3E398F3298}
C:\Users\Roman\AppData\Local\{7444D0AE-9D22-4D9D-9E42-E9F8045191CF}
C:\Users\Roman\AppData\Local\{60F0B48C-F103-423D-8C91-2A4151CA923A}
C:\Users\Roman\AppData\Local\{2CC3E3C1-31B9-43F5-8996-EC42446821C9}
C:\Users\Roman\AppData\Local\{B1E7CB94-328F-43E1-A44D-F56909BBF7BC}
C:\Users\Roman\AppData\Local\{4750683E-C4CA-4398-A3A9-FCB5DE007C60}
C:\Users\Roman\AppData\Local\{73CA5B56-972F-4269-ADCA-DF68973C2E9B}
C:\Users\Roman\AppData\Local\{EEC2BCC1-244D-4503-9A10-FAECE773C62D}
C:\Users\Roman\AppData\Local\{9C1519A8-4B0E-42AD-9B0C-FD9ED7F76FEF}
C:\Users\Roman\AppData\Roaming\inst.exe

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

C:\Users\Roman\AppData\Roaming\avv--- znáš ten program?

[PARKR]

tady je log

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service VGPU stopped successfully!
Service VGPU deleted successfully!
File System32\drivers\rdvgkmd.sys File not found not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\Roman\AppData\Local\Temp\catchme.sys File not found not found.
Error: No service named aohvdf0o was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\aohvdf0o deleted successfully.
File File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{92098370-CA5F-46E3-B750-967079BC3C78}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{92098370-CA5F-46E3-B750-967079BC3C78}\ not found.
Prefs.js: "Ask.com" removed from browser.search.order.1
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Roman\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yrjk4hv0.default\searchplugins\askcom.xml moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\PROGRAM FILES\FIREFOX 4\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} folder moved successfully.
Use Chrome's Settings page to change the HomePage.
Use Chrome's Settings page to change the HomePage.
File C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.5_0\BabylonChromeToolBar.dll not found.
127.0.0.1 localhost removed from HOSTS file successfully
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{81727BE7-50E7-48ed-A547-F0274756E2DD}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{81727BE7-50E7-48ed-A547-F0274756E2DD}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{81727BE7-50E7-48ed-A547-F0274756E2DD}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{81727BE7-50E7-48ed-A547-F0274756E2DD}\ not found.
C:\Windows\System32\perfh005.dat moved successfully.
C:\Windows\System32\perfh009.dat moved successfully.
C:\Windows\System32\perfc005.dat moved successfully.
C:\Windows\System32\perfc009.dat moved successfully.
File C:\Windows\System32\perfh005.dat not found.
C:\Windows\System32\perfi005.dat moved successfully.
File C:\Windows\System32\perfc005.dat not found.
C:\Windows\System32\perfd005.dat moved successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Users\Roman\AppData\Local\{18E4F94E-FB58-42E7-8048-42C0EE49D6AC} folder moved successfully.
C:\Users\Roman\AppData\Local\{5F9C6876-401A-4DCA-AFFA-0CF5B30DDA29} folder moved successfully.
C:\Users\Roman\AppData\Local\{21189D6F-6190-423E-AF21-5BCFBA427CAB} folder moved successfully.
C:\Users\Roman\AppData\Local\{DB901970-7589-40A4-B7AF-70D3D2E0A02A} folder moved successfully.
C:\Users\Roman\AppData\Local\{32287815-722E-4165-8CB8-DDA2378C6AC3} folder moved successfully.
C:\Users\Roman\AppData\Local\{BCED0908-8E53-4F25-AB4F-341427EE7221} folder moved successfully.
C:\Users\Roman\AppData\Local\{BFF83CD8-1583-4547-B6FD-419476871755} folder moved successfully.
C:\Users\Roman\AppData\Local\{E17EA1FD-6C64-48BC-A382-A3950308BEBE} folder moved successfully.
C:\Users\Roman\AppData\Local\{2EF4E429-2F68-498E-AFFD-539EC61DE024} folder moved successfully.
C:\Users\Roman\AppData\Local\{23B35301-907D-4C22-ACDE-57E68D19583C} folder moved successfully.
C:\Users\Roman\AppData\Local\{53703438-21B7-4812-8BDA-47E9E0B97635} folder moved successfully.
C:\Users\Roman\AppData\Local\{CA250E3D-C547-4F66-910A-5EAC99FFDA2E} folder moved successfully.
C:\Users\Roman\AppData\Local\{BCFC3BFA-26D2-4FB1-A9E8-2FAAD9F57DC2} folder moved successfully.
C:\Users\Roman\AppData\Local\{3CF2E918-FB09-4C2B-A6E5-88747C02EDC9} folder moved successfully.
C:\Users\Roman\AppData\Local\{8AB86B8F-0B53-432E-B674-656A37735932} folder moved successfully.
C:\Users\Roman\AppData\Local\{C170C16E-39F0-4708-8246-5E641F3E43DC} folder moved successfully.
C:\Users\Roman\AppData\Local\{80E9786B-3113-4D96-B730-9A3E398F3298} folder moved successfully.
C:\Users\Roman\AppData\Local\{7444D0AE-9D22-4D9D-9E42-E9F8045191CF} folder moved successfully.
C:\Users\Roman\AppData\Local\{60F0B48C-F103-423D-8C91-2A4151CA923A} folder moved successfully.
C:\Users\Roman\AppData\Local\{2CC3E3C1-31B9-43F5-8996-EC42446821C9} folder moved successfully.
C:\Users\Roman\AppData\Local\{B1E7CB94-328F-43E1-A44D-F56909BBF7BC} folder moved successfully.
C:\Users\Roman\AppData\Local\{4750683E-C4CA-4398-A3A9-FCB5DE007C60} folder moved successfully.
C:\Users\Roman\AppData\Local\{73CA5B56-972F-4269-ADCA-DF68973C2E9B} folder moved successfully.
C:\Users\Roman\AppData\Local\{EEC2BCC1-244D-4503-9A10-FAECE773C62D} folder moved successfully.
C:\Users\Roman\AppData\Local\{9C1519A8-4B0E-42AD-9B0C-FD9ED7F76FEF} folder moved successfully.
C:\Users\Roman\AppData\Roaming\inst.exe moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Roman
->Temp folder emptied: 247960 bytes
->Temporary Internet Files folder emptied: 21099558 bytes
->Java cache emptied: 2765553 bytes
->FireFox cache emptied: 144896345 bytes
->Google Chrome cache emptied: 7918755 bytes
->Flash cache emptied: 43134 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10608690 bytes
RecycleBin emptied: 174030 bytes

Total Files Cleaned = 179,00 mb


OTL by OldTimer - Version 3.2.54.0 log created on 07222012_203026

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

jaro3 napsal:

C:\Users\Roman\AppData\Roaming\avv--- znáš ten program?

nevím o ničem takovém a ani podle umístění ho nelze najít

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
C:\Users\Roman\AppData\Roaming\avv

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Jsou ještě nějaké problémy?

[PARKR]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
========== FILES ==========
C:\Users\Roman\AppData\Roaming\avv folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Roman
->Temp folder emptied: 1328630 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 103069581 bytes
->Google Chrome cache emptied: 6845859 bytes
->Flash cache emptied: 1372 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 5106 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6062112 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 112,00 mb


OTL by OldTimer - Version 3.2.54.0 log created on 07232012_054718

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Zdá se být vše v pořádku . Rychlost se o poznání zlepšila . Pokud už je to vše , tak moc ..