Prosím o kontrolu logu - nefunkční weby

[jaro3]

v kabelu to nebude.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes,DefaultScope =
FF - prefs.js..browser.search.selectedEngine: "Google"
[2013.06.13 20:39:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions
[2013.06.05 17:51:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - No CLSID value found.
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
ipconfig /flushdns /c
C:\WINDOWS\System32\d3d9caps.dat
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Drive E: | 971,85 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 458,54 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 458,54 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive N: | 15,78 Gb Total Space | 0,88 Gb Free Space | 5,56% Space Free | Partition Type: FAT32

Ty disky jsou přeplněné , měl bys na nich uvolnit nějaké místo.

Já bych to viděl asi na to COMODO , odinstaloval bych od něj všechny programy , hlavně:
COMODO CertSentry

[Reklama]

[ondrej01]

log z OTL:

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Prefs.js: "Google" removed from browser.search.selectedEngine
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE5D279F-081B-4404-994D-C6B60AAEBA6D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE5D279F-081B-4404-994D-C6B60AAEBA6D}\ not found.
HidServ removed from NetSvcs value successfully!
Ias removed from NetSvcs value successfully!
Iprip removed from NetSvcs value successfully!
Nwsapagent removed from NetSvcs value successfully!
WmdmPmSp removed from NetSvcs value successfully!
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
< ipconfig /flushdns /c >
Konfigurace protokolu IP systému Windows
Mezipaměť překládání DNS byla úspěšně vyprázdněna.
C:\Documents and Settings\uzivatel\Plocha\cmd.bat deleted successfully.
C:\Documents and Settings\uzivatel\Plocha\cmd.txt deleted successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Roger Vaz Cardoso

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: uzivatel
->Temp folder emptied: 2969935 bytes
->Temporary Internet Files folder emptied: 368325 bytes
->FireFox cache emptied: 100522974 bytes
->Google Chrome cache emptied: 376796366 bytes
->Flash cache emptied: 14456 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 80551 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 340962835 bytes

Total Files Cleaned = 784,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Roger Vaz Cardoso

User: UpdatusUser

User: uzivatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 07072013_160556

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


Comodo Dragona jsem smazal, po pravdě ani nevím kdy jsem ho instaloval asi to přišlo spolu s nějakým programem.

[jaro3]

Právě , dávat pozor , co instaluj za balast s programem , který chceš.

A programy se nemažou , ale odinstalovávají!

[ondrej01]

Ano, jen špatně napsané, dělal jsem to samozřejmě přes Ovládací panely > Přidat a odebrat programy. Jinak weby stále nefungují.

[jaro3]

Deaktivuj firewall a antivir , nebo je odinstaluj , bude to někde v nich.

[ondrej01]

Tak jsem deaktivoval na asi 10 minut rezidentní ochranu a antivirovou ochranu na ESETU, firewall jsem vypnul a stále nic a nic. Odinstalovávat to nechci, protože nemám k antiviru CD, klíč a nic podobného. Dělal mi to jeden místní technik mám tam licenci na 2 roky (teď už asi jen 7 měsíců).

Co mám tedy dělat dál?

[jaro3]

To je divný , že k tomu nemáš klíč..asi zase nějaká hromadná licence , nebo ilegal..

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ .
Pod specifickými registry vyber Použít white list .
Pod Vlastní skenování/opravy do okénka vlož následující text:

Kód: Vybrat vše

netsvcs
drivers32
%SYSTEMDRIVE%\*.*
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\Fonts\*.ini
%systemroot%\Fonts\*.ini2
%systemroot%\Fonts\*.exe
%systemroot%\system32\spool\prtprocs\w32x86\*.*
%systemroot%\REPAIR\*.bak1
%systemroot%\REPAIR\*.ini
%systemroot%\system32\*.jpg
%systemroot%\*.jpg
%systemroot%\*.png
%systemroot%\*.scr
%systemroot%\*._sy
%APPDATA%\Adobe\Update\*.*
%ALLUSERSPROFILE%\Favorites\*.*
%APPDATA%\Microsoft\*.*
%PROGRAMFILES%\*.*
%APPDATA%\Update\*.*
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\System32\config\*.sav
%PROGRAMFILES%\bak. /s
%systemroot%\system32\bak. /s
%ALLUSERSPROFILE%\Start Menu\*.lnk /x
%systemroot%\system32\config\systemprofile\*.dat /x
%systemroot%\*.config
%systemroot%\system32\*.db
%APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x
%USERPROFILE%\Desktop\*.exe
%PROGRAMFILES%\Common Files\*.*
%systemroot%\*.src
%systemroot%\install\*.*
%systemroot%\system32\DLL\*.*
%systemroot%\system32\HelpFiles\*.*
%systemroot%\system32\rundll\*.*
%systemroot%\winn32\*.*
%systemroot%\Java\*.*
%systemroot%\system32\test\*.*
%systemroot%\system32\Rundll32\*.*
%systemroot%\AppPatch\Custom\*.*
%APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x
%PROGRAMFILES%\PC-Doctor\Downloads\*.*
%PROGRAMFILES%\Internet Explorer\*.tmp
%PROGRAMFILES%\Internet Explorer\*.dat
%USERPROFILE%\My Documents\*.exe
%USERPROFILE%\*.exe
%systemroot%\ADDINS\*.*
%systemroot%\assembly\*.bak2
%systemroot%\Config\*.*
%systemroot%\REPAIR\*.bak2
%systemroot%\SECURITY\Database\*.sdb /x
%systemroot%\SYSTEM\*.bak2
%systemroot%\Web\*.bak2
%systemroot%\Driver Cache\*.*
%PROGRAMFILES%\Mozilla Firefox\0*.exe
%ProgramFiles%\Microsoft Common\*.*
%ProgramFiles%\TinyProxy.
%USERPROFILE%\Favorites\*.url /x
%systemroot%\system32\*.bk
%systemroot%\*.te
%systemroot%\system32\system32\*.*
%ALLUSERSPROFILE%\*.dat /x
%systemroot%\system32\drivers\*.rmv
dir /b "%systemroot%\system32\*.exe" | find /i " " /c
dir /b "%systemroot%\*.exe" | find /i " " /c
%PROGRAMFILES%\Microsoft\*.*
%systemroot%\System32\Wbem\proquota.exe
%PROGRAMFILES%\Mozilla Firefox\*.dat
%USERPROFILE%\Cookies\*.txt /x
%SystemRoot%\system32\fonts\*.*
%systemroot%\system32\winlog\*.*
%systemroot%\system32\Language\*.*
%systemroot%\system32\Settings\*.*
%systemroot%\system32\*.quo
%SYSTEMROOT%\AppPatch\*.exe
%SYSTEMROOT%\inf\*.exe
%SYSTEMROOT%\Installer\*.exe
%USERPROFILE%\Templates\*.*
%systemroot%\system32\config\*.bak2
%systemroot%\system32\Computers\*.*
%SystemRoot%\system32\Sound\*.*
%SystemRoot%\system32\SpecialImg\*.*
%SystemRoot%\system32\code\*.*
%SystemRoot%\system32\draft\*.*
%SystemRoot%\system32\MSSSys\*.*
%ProgramFiles%\Javascript\*.*
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs


Klikni na Rychle prohledat ,neměň jiná nastavení a nech program pracovat až do konce.
Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem zkopíruj.

[ondrej01]

Ten extras LOG se zase neotevřel a ani se nikam neuložil, takže zde je jen OTL log:

OTL logfile created on: 14.7.2013 18:35:32 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\uzivatel\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,10 Gb Available Physical Memory | 54,84% Memory free
3,85 Gb Paging File | 2,80 Gb Available in Paging File | 72,83% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 106,82 Gb Free Space | 22,93% Space Free | Partition Type: NTFS
Drive E: | 971,85 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 458,54 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 458,54 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PC | User Name: uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Program Files\Steam\Steam.exe (Valve Corporation)
PRC - C:\Documents and Settings\uzivatel\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
PRC - c:\Program Files\Zune\ZuneBusEnum.exe (Microsoft Corporation)
PRC - C:\Program Files\Activ Software\ActivDriver\ActivMgr.exe ()
PRC - C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd)
PRC - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\atwtusb.exe ()
PRC - C:\WINDOWS\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)


========== Modules (No Company Name) ==========

MOD - C:\Documents and Settings\All Users\Data aplikací\Activ Software\ActivApplications\ActivFocusHook.dll ()
MOD - C:\Program Files\Steam\bin\chromehtml.dll ()
MOD - C:\Program Files\Steam\bin\libcef.dll ()
MOD - C:\Program Files\Steam\SDL2.dll ()
MOD - C:\Program Files\Steam\bin\avcodec-53.dll ()
MOD - C:\Program Files\Steam\bin\avformat-53.dll ()
MOD - C:\Program Files\Steam\bin\avutil-51.dll ()
MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
MOD - C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll ()
MOD - C:\Program Files\Google\Chrome\Application\27.0.1453.110\libglesv2.dll ()
MOD - C:\Program Files\Google\Chrome\Application\27.0.1453.110\libegl.dll ()
MOD - C:\Program Files\Google\Chrome\Application\27.0.1453.110\ffmpegsumo.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avformat-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avutil-51.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\prmnst.dll ()
MOD - C:\WINDOWS\libactivboardex.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\QtNetwork4.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\QtXml4.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\QtGui4.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\QtCore4.dll ()
MOD - C:\Program Files\Activ Software\ActivDriver\ActivMgr.exe ()
MOD - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\atwtusb.exe ()
MOD - C:\Program Files\translator\WEBIE.DLL ()


========== Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (TeamViewer8) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (rpcapd) -- C:\Program Files\WinPcap\rpcapd.exe (Riverbed Technology, Inc.)
SRV - (PanService) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
SRV - (Futuremark SystemInfo Service) -- C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe (Futuremark Corporation)
SRV - (ZuneWlanCfgSvc) -- c:\Program Files\Zune\ZuneWlanCfgSvc.exe (Microsoft Corporation)
SRV - (WMZuneComm) -- c:\Program Files\Zune\WMZuneComm.exe (Microsoft Corporation)
SRV - (ZuneNetworkSvc) -- c:\Program Files\Zune\ZuneNss.exe (Microsoft Corporation)
SRV - (ZuneBusEnum) -- c:\Program Files\Zune\ZuneBusEnum.exe (Microsoft Corporation)
SRV - (IJPLMSVC) -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)


========== Driver Services (SafeList) ==========

DRV - (WinRing0_1_2_0) -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys File not found
DRV - (DrvAgent32) -- C:\WINDOWS\system32\drivers\DrvAgent32.sys (Phoenix Technologies)
DRV - (NPF) -- C:\WINDOWS\system32\drivers\npf.sys (Riverbed Technology, Inc.)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (mcaudrv_simple) -- C:\WINDOWS\system32\drivers\mcaudrv.sys (ManyCam LLC)
DRV - (ManyCam) -- C:\WINDOWS\system32\drivers\mcvidrv.sys (ManyCam LLC)
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (EuMusDesignVirtualAudioCableWdm) -- C:\WINDOWS\system32\drivers\vrtaucbl.sys (Eugene V. Muzychenko)
DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (btnetBUs) -- C:\WINDOWS\system32\drivers\btnetBus.sys (IVT Corporation.)
DRV - (BtHidBus) -- C:\WINDOWS\system32\drivers\BtHidBus.sys (IVT Corporation.)
DRV - (AtiHDAudioService) -- C:\WINDOWS\system32\drivers\AtihdXP3.sys (Advanced Micro Devices)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (cpuz135) -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys (CPUID)
DRV - (litsgt) -- C:\WINDOWS\system32\drivers\litsgt.sys ()
DRV - (tansgt) -- C:\WINDOWS\system32\drivers\tansgt.sys ()
DRV - (Tetri5) -- C:\WINDOWS\system32\drivers\Tetri5.sys ()
DRV - (hwpsgt) -- C:\WINDOWS\system32\drivers\hwpsgt.sys ()
DRV - (lemsgt) -- C:\WINDOWS\system32\drivers\lemsgt.sys ()
DRV - (prmvmouse) -- C:\WINDOWS\system32\drivers\activmouse.sys (Promethean Technologies Ltd)
DRV - (ActivHidSerMini) -- C:\WINDOWS\system32\drivers\activhidsermini.sys (Promethean Technologies Ltd)
DRV - (IvtBtBUs) -- C:\WINDOWS\system32\drivers\IvtBtBus.sys (IVT Corporation.)
DRV - (s1039mdm) -- C:\WINDOWS\system32\drivers\s1039mdm.sys (MCCI Corporation)
DRV - (s1039unic) -- C:\WINDOWS\system32\drivers\s1039unic.sys (MCCI Corporation)
DRV - (s1039mgmt) -- C:\WINDOWS\system32\drivers\s1039mgmt.sys (MCCI Corporation)
DRV - (s1039obex) -- C:\WINDOWS\system32\drivers\s1039obex.sys (MCCI Corporation)
DRV - (s1039bus) -- C:\WINDOWS\system32\drivers\s1039bus.sys (MCCI Corporation)
DRV - (s1039nd5) -- C:\WINDOWS\system32\drivers\s1039nd5.sys (MCCI Corporation)
DRV - (s1039mdfl) -- C:\WINDOWS\system32\drivers\s1039mdfl.sys (MCCI Corporation)
DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation)
DRV - (hwdatacard) -- C:\WINDOWS\system32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (hwusbdev) -- C:\WINDOWS\system32\drivers\ewusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (Huawei) -- C:\WINDOWS\system32\drivers\ewdcsc.sys (Huawei Tech. Co., Ltd.)
DRV - (tidnet) -- C:\WINDOWS\system32\drivers\tidnet.sys (Telefónica I+D)
DRV - (WinUSB) -- C:\WINDOWS\system32\drivers\winusb.sys (Microsoft Corporation)
DRV - (epfwtdir) -- C:\WINDOWS\system32\drivers\epfwtdir.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (VIAHdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (CamSuiteVAC) -- C:\WINDOWS\system32\drivers\CamSuiteVAC.sys ()
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (nvgts) -- C:\WINDOWS\system32\drivers\nvgts.sys (NVIDIA Corporation)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (NwlnkIpx) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys (Microsoft Corporation)
DRV - (nm) -- C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (monfilt) -- C:\WINDOWS\system32\drivers\monfilt.sys (Creative Technology Ltd.)
DRV - (PAC7302) -- C:\WINDOWS\system32\drivers\PAC7302.SYS (PixArt Imaging Inc.)
DRV - (mcdbus) -- C:\WINDOWS\system32\drivers\mcdbus.sys (MagicISO, Inc.)
DRV - (rt2870) -- C:\WINDOWS\system32\drivers\rt2870.sys (Ralink Technology, Corp.)
DRV - (AmdLLD) -- C:\WINDOWS\system32\drivers\AmdLLD.sys (AMD, Inc.)
DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices)
DRV - (sfvfs02) -- C:\WINDOWS\system32\drivers\sfvfs02.sys (Protection Technology (StarForce))
DRV - (sfsync02) -- C:\WINDOWS\system32\drivers\sfsync02.sys (Protection Technology)
DRV - (sfdrv01a) -- C:\WINDOWS\system32\drivers\sfdrv01a.sys (Protection Technology (StarForce))
DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (sfhlp02) -- C:\WINDOWS\system32\drivers\sfhlp02.sys (Protection Technology (StarForce))
DRV - (aiptektp) -- C:\WINDOWS\system32\drivers\aiptektp.sys (WALTOP International Corp.)
DRV - (SCREAMINGBDRIVER) -- C:\WINDOWS\system32\drivers\screamingbdriver.sys (Screaming Bee LLC)
DRV - (NwlnkNb) -- C:\WINDOWS\system32\drivers\nwlnknb.sys (Microsoft Corporation)
DRV - (NwlnkSpx) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys (Microsoft Corporation)
DRV - (irsir) -- C:\WINDOWS\system32\drivers\irsir.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://atlas.centrum.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: c:\Program Files\Sony\Media Go\npmediago.dll (Sony Creative Software Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files\OnLive\Plugin\npolgdet.dll (OnLive)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.05.29 14:27:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.07.07 21:12:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.07 21:12:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012.05.08 16:34:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2013.01.29 17:08:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009.07.08 11:00:53 | 000,000,000 | ---D | M]

[2013.07.11 12:30:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions
[2013.07.04 14:43:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-10.xml
[2012.02.19 18:37:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-11.xml
[2012.03.15 20:11:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-12.xml
[2012.06.03 10:52:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-13.xml
[2012.06.23 16:54:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-14.xml
[2012.07.19 16:24:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-15.xml
[2011.08.17 09:43:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-4.xml
[2011.09.01 21:32:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-5.xml
[2011.09.08 15:50:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-6.xml
[2011.09.28 21:02:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-7.xml
[2011.11.10 19:55:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-8.xml
[2011.12.21 15:44:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\icqplugin-9.xml
[2010.04.09 20:17:36 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\qipsearch.xml
[2013.07.07 01:21:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\extensions
[2013.07.07 01:21:00 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\updated\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013.07.07 01:21:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.07.07 01:21:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
[2013.07.07 01:21:11 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012.06.28 17:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\uzivatel\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\uzivatel\Local Settings\Data aplikac\u00ED\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: OnLive Game Client Detector (Enabled) = C:\Program Files\OnLive\Plugin\npolgdet.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Picasa2\npPicasa3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - plugin: Media Go Detector (Enabled) = c:\Program Files\Sony\Media Go\npmediago.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Dokumenty Google = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0\
CHR - Extension: Twitch Live = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iiljidcefnbhbpamageahhblhbbhhopm\0.88_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013.07.07 16:05:59 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Program Files\translator\WEBIE.DLL ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [ActivControl] C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe (Promethean Technologies Group Ltd)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [atwtusb] C:\WINDOWS\System32\atwtusb.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKCU..\Run: [BD4D3F19C0E2D913F2435A456B4DD0B5CC4EE466._service_run] C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\Advanced: ShowSuperHidden = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\Advanced: DontPrettyPath = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files\office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Program Files\translator\WEBIE.DLL ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files\translator\WEBIE.DLL ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files\translator\WEBIE.DLL ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files\translator\WEBIE.DLL ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.21.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E9E09684-F795-4577-94F7-036A32A7C228}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 2.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 2.bmp
O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.12.04 19:52:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2013.02.27 17:41:01 | 000,000,716 | ---- | M] () - C:\autoexec.cfg -- [ NTFS ]
O32 - AutoRun File - [2010.09.08 09:26:33 | 000,000,075 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2012.04.24 19:22:52 | 000,000,041 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2012.04.24 19:22:52 | 000,000,041 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)


Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ffdshow.ax ()
Drivers32: VIDC.FPS1 - frapsvid.dll File not found
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mjpg - C:\WINDOWS\System32\pvmjpg30.dll (Pegasus Imaging Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013.07.14 17:44:43 | 000,000,000 | ---D | C] -- C:\Program Files\Wireshark
[2013.07.09 19:40:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2013.07.07 21:12:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\COMODO
[2013.07.07 21:12:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\COMODO
[2013.07.07 21:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013.07.06 18:37:11 | 000,259,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTH.scr
[2013.07.06 18:33:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTL.exe
[2013.07.05 13:39:37 | 000,000,000 | ---D | C] -- C:\FRST
[2013.07.01 01:15:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\foto
[2013.07.01 00:12:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Comodo
[2013.07.01 00:12:16 | 000,048,392 | ---- | C] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2013.07.01 00:11:47 | 000,000,000 | ---D | C] -- C:\Program Files\Comodo
[2013.07.01 00:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\APN
[2013.07.01 00:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ManyCam
[2013.07.01 00:09:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ManyCam
[2013.06.27 23:28:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\SystemRequirementsLab
[2013.06.27 21:28:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\SQUARE ENIX
[2013.06.27 21:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\SQUARE ENIX
[2013.06.27 20:57:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\Tomb Raider 2013
[2013.06.27 20:53:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\Nová složka (3)
[2013.06.27 20:51:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\Tomb Raider 2013 CZ
[2013.06.26 16:09:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\psl zvnn
[2013.06.25 23:17:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\uzivatel\Recent
[2013.06.25 18:35:05 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2013.06.20 20:45:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\wii
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.07.14 18:21:15 | 000,018,414 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2013.07.14 13:36:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.07.14 13:35:48 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.07.13 01:49:41 | 000,276,074 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\4.a.jpg
[2013.07.12 14:29:34 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2013.07.11 18:49:32 | 000,087,480 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\keepcalm.jpg
[2013.07.11 18:48:02 | 000,012,405 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\909110.png
[2013.07.11 11:20:43 | 000,334,384 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.07.11 03:13:20 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.07.09 19:45:45 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Spybot - Search & Destroy.lnk
[2013.07.09 19:42:33 | 000,025,916 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\cc_20130709_194230.reg
[2013.07.09 19:06:36 | 000,148,483 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\pudgik.jpg
[2013.07.09 18:37:30 | 000,130,373 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\gromathlogo.jpg
[2013.07.09 18:29:33 | 000,118,231 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\pudge.jpg
[2013.07.09 15:32:04 | 000,170,389 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\dota2_splash_pudge.jpg
[2013.07.09 12:04:58 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Google Chrome.lnk
[2013.07.07 16:05:59 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2013.07.06 18:37:14 | 000,259,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTH.scr
[2013.07.06 18:34:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTL.exe
[2013.07.05 00:44:26 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.07.01 00:20:37 | 000,048,392 | ---- | M] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2013.07.01 00:12:32 | 000,000,769 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Comodo Dragon.lnk
[2013.07.01 00:10:17 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ManyCam.lnk
[2013.06.28 16:20:05 | 001,100,528 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.06.28 16:20:05 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.06.28 16:20:03 | 001,100,528 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.06.27 21:28:02 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Tombraider.lnk
[2013.06.26 18:55:18 | 006,772,864 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\kid-cudi-vs-crookers-day-n-night-crookers-remix.mp3
[2013.06.26 13:28:57 | 000,125,278 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\996711_473219229423139_866746560_n.jpg
[2013.06.22 19:39:45 | 006,912,054 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 2.bmp
[2013.06.22 19:33:28 | 006,912,054 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 1.bmp
[2013.06.21 14:02:09 | 002,289,288 | ---- | M] () -- C:\WINDOWS\System32\nvdata.data
[2013.06.21 14:02:09 | 000,017,134 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.07.14 17:44:50 | 000,001,487 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Wireshark.lnk
[2013.07.13 01:48:22 | 000,276,074 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\4.a.jpg
[2013.07.11 18:49:28 | 000,087,480 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\keepcalm.jpg
[2013.07.11 18:48:00 | 000,012,405 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\909110.png
[2013.07.11 03:10:03 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013.07.10 14:03:40 | 000,334,384 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.07.09 19:42:31 | 000,025,916 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\cc_20130709_194230.reg
[2013.07.09 19:06:35 | 000,148,483 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\pudgik.jpg
[2013.07.09 18:37:28 | 000,130,373 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\gromathlogo.jpg
[2013.07.09 15:40:58 | 000,118,231 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\pudge.jpg
[2013.07.09 15:31:14 | 000,170,389 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\dota2_splash_pudge.jpg
[2013.07.01 00:12:31 | 000,000,769 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Comodo Dragon.lnk
[2013.07.01 00:10:17 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\ManyCam.lnk
[2013.06.27 21:28:02 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Tombraider.lnk
[2013.06.26 18:54:38 | 006,772,864 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\kid-cudi-vs-crookers-day-n-night-crookers-remix.mp3
[2013.06.26 13:28:56 | 000,125,278 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\996711_473219229423139_866746560_n.jpg
[2013.06.22 19:39:45 | 006,912,054 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 2.bmp
[2013.06.22 19:33:28 | 006,912,054 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Nepojmenovaný 1.bmp
[2013.04.14 16:25:29 | 000,004,522 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\CamStudio.cfg
[2013.04.14 16:25:29 | 000,000,408 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\CamShapes.ini
[2013.04.14 16:25:29 | 000,000,408 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\CamLayout.ini
[2013.04.14 16:25:29 | 000,000,076 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\Camdata.ini
[2013.03.01 03:47:36 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2012.12.24 00:47:15 | 000,000,001 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\llftool.4.25.agreement
[2012.08.11 22:01:04 | 000,109,256 | ---- | C] () -- C:\WINDOWS\System32\EasyHook64.dll
[2012.08.11 22:01:04 | 000,090,824 | ---- | C] () -- C:\WINDOWS\System32\EasyHook32.dll
[2012.07.18 20:23:25 | 000,001,008 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.nast
[2012.06.19 19:09:49 | 000,687,559 | ---- | C] () -- C:\WINDOWS\Counter-Strike 1.6 Standalone Uninstaller.exe
[2012.06.08 19:15:16 | 000,000,052 | ---- | C] () -- C:\WINDOWS\SW_Win3112X32.DLL
[2012.06.08 19:14:34 | 000,102,400 | ---- | C] ( ) -- C:\WINDOWS\System32\bclnap.dll
[2012.06.08 19:14:33 | 003,256,320 | ---- | C] () -- C:\WINDOWS\System32\beconvlib.dll
[2012.06.08 19:14:33 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\bprgcomm.dll
[2012.06.08 19:14:33 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\CSVSpecialProcessing.dll
[2012.06.08 19:14:32 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\SII_PDF.dll
[2012.06.08 19:14:32 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\SARzilla.dll
[2012.06.08 19:14:32 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\DVM.dll
[2012.06.08 19:14:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\RegisterExe.exe
[2012.04.14 16:33:15 | 002,289,288 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012.04.10 23:57:50 | 001,100,528 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.10 23:57:48 | 001,100,528 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.04.10 23:57:48 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.04.10 23:57:26 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2012.03.06 20:21:48 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\uzivatel\intlname.ols
[2012.02.24 15:20:29 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\fusioncache.dat
[2012.02.23 16:23:36 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012.02.23 16:23:36 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\PnkBstrK.sys
[2012.02.23 16:23:21 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2012.02.23 16:23:21 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2012.02.23 16:23:20 | 000,669,184 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2012.02.16 20:35:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.14 15:11:16 | 000,000,090 | ---- | C] () -- C:\WINDOWS\wa.INI
[2011.12.27 14:41:56 | 000,000,040 | ---- | C] () -- C:\WINDOWS\runaway2.ini
[2011.12.25 14:33:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EngineExe.INI
[2011.12.25 14:18:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PanelExe.INI
[2011.12.05 23:04:00 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2011.12.05 23:03:52 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011.10.18 22:24:00 | 000,340,542 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.10.18 22:24:00 | 000,340,542 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1993962763-1292428093-682003330-1003-0.dat
[2011.09.28 18:44:14 | 000,179,271 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.06.26 18:22:06 | 000,000,218 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\recently-used.xbel
[2011.01.17 17:50:58 | 000,001,057 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\vso_ts_preview.xml

========== ZeroAccess Check ==========

[2010.03.22 20:35:42 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 08:51:56 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 08:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[ondrej01]

========== LOP Check ==========

[2013.03.26 18:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Activ Software
[2013.07.01 00:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\APN
[2012.09.27 19:57:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2013.02.27 23:11:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Boxtools
[2012.12.15 18:24:08 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2013.03.28 17:09:19 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonEPP
[2013.01.16 13:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJ
[2013.03.28 17:09:19 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJEPPEX2
[2012.12.15 18:28:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJMSetup
[2012.12.15 18:31:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJMyPrinter
[2013.06.09 12:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
[2013.01.16 13:32:17 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJScan
[2012.12.15 18:31:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJSolutionMenuEX
[2012.12.15 18:27:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonIJWSpt
[2012.06.05 16:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2013.02.27 19:26:12 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2013.03.26 18:24:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Connectify
[2012.03.19 18:32:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.06.05 16:30:02 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\DSS
[2013.03.26 18:24:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2013.03.26 18:24:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2008.12.04 16:15:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.12.22 21:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FileLab
[2011.04.28 16:51:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Frag Games
[2013.02.16 13:25:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.06.05 20:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.12.05 15:32:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2013.07.01 00:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ManyCam
[2010.08.13 14:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NCH Swift Sound
[2013.03.26 18:24:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Origin
[2013.01.19 01:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2013.02.23 20:04:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle VideoSpin
[2012.09.29 16:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2013.03.26 18:56:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Promethean
[2013.05.06 17:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Razer
[2013.04.12 16:43:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RELOADED
[2013.06.27 23:28:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SystemRequirementsLab
[2011.05.07 17:13:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tablet
[2013.07.08 13:26:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TechSmith
[2013.03.26 18:27:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2013.02.28 16:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2013.03.26 18:24:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2010.04.12 15:16:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\UDL
[2011.03.02 20:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2010.05.10 20:15:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Winferno
[2013.02.27 23:07:13 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013.03.26 18:25:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\.minecraft
[2013.05.03 17:23:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\3909 LLC
[2013.03.14 21:53:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ACTIV Software
[2012.01.29 20:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Android
[2013.03.26 18:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\avidemux
[2013.01.16 13:32:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Canon
[2013.03.26 17:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ClubCooee
[2012.11.30 17:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Crayon Physics Deluxe
[2013.05.06 16:55:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite
[2012.05.29 14:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DDMSettings
[2010.05.11 18:07:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\EPSON
[2013.03.26 18:25:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\fizzy
[2011.06.18 20:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\GameMaker
[2012.07.19 11:41:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Games
[2013.03.26 18:25:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\GARMIN
[2011.12.17 22:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\GetRightToGo
[2010.08.17 12:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Happy Foto
[2013.05.11 00:27:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\IceCold-WoW
[2013.03.26 18:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ
[2013.03.26 18:25:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\inkscape
[2012.07.22 14:43:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\IObit
[2013.04.22 18:05:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\iWesoft
[2011.11.17 16:29:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Jane s Hotel 3
[2010.10.30 11:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Leadertech
[2013.03.26 18:25:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Leawo
[2013.07.01 00:08:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ManyCam
[2012.08.11 16:50:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Mikrotik
[2011.12.25 13:29:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Mobile Action
[2013.03.26 18:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\MOVAVI
[2013.03.26 18:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Mumble
[2013.03.26 18:26:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Offline Explorer
[2011.11.23 19:05:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OnLive App
[2011.11.22 18:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org
[2010.04.10 20:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Opera
[2013.02.27 17:04:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Origin
[2011.07.14 14:18:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhoneRemoteControl
[2013.03.14 21:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Promethean
[2012.03.13 16:04:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PunkBuster
[2011.06.26 12:20:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Rovio
[2012.03.21 18:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Screaming Bee
[2013.03.26 18:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Sony
[2011.11.02 17:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Sony Online Entertainment
[2010.10.01 13:31:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Sony Setup
[2013.03.26 18:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SPORE
[2011.12.17 23:43:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Stellarium
[2012.01.22 11:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TagScanner
[2013.06.24 14:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TeamViewer
[2012.04.11 21:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Telefónica Móviles
[2009.07.08 11:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Thunderbird
[2013.07.09 19:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TS3Client
[2013.02.27 19:28:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.03.13 16:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Ubisoft
[2013.06.07 16:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Wireshark
[2013.03.26 17:17:00 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\uzivatel\Data aplikací\wyUpdate AU
[2013.03.26 18:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\XLive
[2012.12.27 00:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\XnView
[2012.11.03 18:12:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Zoner

========== Purity Check ==========



========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2013.02.16 13:24:43 | 000,017,156 | ---- | M] () -- C:\AdwCleaner[R1].txt
[2013.02.16 13:25:08 | 000,017,217 | ---- | M] () -- C:\AdwCleaner[R2].txt
[2013.06.08 22:10:42 | 000,004,263 | ---- | M] () -- C:\AdwCleaner[R3].txt
[2013.06.08 22:12:25 | 000,004,323 | ---- | M] () -- C:\AdwCleaner[R4].txt
[2013.06.08 23:44:53 | 000,004,383 | ---- | M] () -- C:\AdwCleaner[R5].txt
[2013.02.16 13:25:21 | 000,017,387 | ---- | M] () -- C:\AdwCleaner[S1].txt
[2013.06.08 23:44:57 | 000,004,558 | ---- | M] () -- C:\AdwCleaner[S2].txt
[2008.12.04 19:52:47 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2013.02.27 17:41:01 | 000,000,716 | ---- | M] () -- C:\autoexec.cfg
[2011.06.03 11:08:56 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2013.07.12 14:29:34 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2001.10.25 16:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004.08.03 23:00:04 | 000,261,312 | RHS- | M] () -- C:\cmldr
[2008.12.04 19:52:47 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1028.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1031.txt
[2007.11.07 09:00:40 | 000,010,134 | ---- | M] () -- C:\eula.1033.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1036.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1040.txt
[2007.11.07 09:00:40 | 000,000,118 | ---- | M] () -- C:\eula.1041.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1042.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.2052.txt
[2007.11.07 09:00:40 | 000,017,734 | ---- | M] () -- C:\eula.3082.txt
[2012.03.21 18:41:52 | 000,000,000 | ---- | M] () -- C:\fftoutput.txt
[2007.11.07 09:00:40 | 000,001,110 | ---- | M] () -- C:\globdata.ini
[2007.11.07 09:00:40 | 000,000,843 | ---- | M] () -- C:\install.ini
[2007.11.07 09:03:18 | 000,076,304 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll
[2007.11.07 09:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll
[2007.11.07 09:03:18 | 000,091,152 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll
[2007.11.07 09:03:18 | 000,097,296 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll
[2007.11.07 09:03:18 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll
[2007.11.07 09:03:18 | 000,081,424 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll
[2007.11.07 09:03:18 | 000,079,888 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll
[2007.11.07 09:03:18 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll
[2007.11.07 09:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll
[2008.12.04 19:52:47 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.09.22 20:25:08 | 000,669,162 | ---- | M] () -- C:\lma_log.html
[2008.12.04 19:52:47 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008.04.13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008.04.14 00:01:48 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2013.05.03 13:05:15 | 000,230,432 | ---- | M] () -- C:\PA7302.DAT
[2013.07.14 13:35:42 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2007.11.07 09:09:22 | 001,442,522 | ---- | M] () -- C:\VC_RED.cab
[2007.11.07 09:12:28 | 000,232,960 | ---- | M] () -- C:\VC_RED.MSI
[2012.08.13 14:20:13 | 000,000,277 | ---- | M] () -- C:\WorkerOutput.bin

< %systemroot%\Fonts\*.com >
[2006.04.18 15:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006.06.29 14:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006.04.18 15:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006.06.29 14:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2008.12.04 19:52:25 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2010.08.25 06:00:00 | 000,027,648 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPDAD.DLL
[2010.08.25 06:00:00 | 000,073,216 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPPAD.DLL
[2008.07.06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2003.06.19 02:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 12:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >
[2005.02.21 21:06:44 | 000,475,136 | ---- | M] () -- C:\WINDOWS\Living Marine Aquarium 2.scr

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >
[2010.08.19 12:05:48 | 000,001,746 | -H-- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Microsoft\LastFlashConfig.WFC

< %PROGRAMFILES%\*.* >

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2008.12.04 20:43:04 | 000,098,304 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.12.04 20:43:04 | 001,093,632 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.12.04 20:43:03 | 000,487,424 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2008.12.04 19:55:47 | 000,000,125 | -HS- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Microsoft\Internet Explorer\Quick Launch\desktop.ini

< %USERPROFILE%\Desktop\*.exe >

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\0*.exe >

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >

< %systemroot%\system32\*.bk >

< %systemroot%\*.te >

< %systemroot%\system32\system32\*.* >

< %ALLUSERSPROFILE%\*.dat /x >

< %systemroot%\system32\drivers\*.rmv >

< dir /b "%systemroot%\system32\*.exe" | find /i " " /c >

< dir /b "%systemroot%\*.exe" | find /i " " /c >
Counter-Strike 1.6 Standalone Uninstaller.exe

< %PROGRAMFILES%\Microsoft\*.* >

< %systemroot%\System32\Wbem\proquota.exe >

< %PROGRAMFILES%\Mozilla Firefox\*.dat >

< %USERPROFILE%\Cookies\*.txt /x >
[2013.07.14 17:51:40 | 000,032,768 | -HS- | M] () -- C:\Documents and Settings\uzivatel\Cookies\index.dat

< %SystemRoot%\system32\fonts\*.* >

< %systemroot%\system32\winlog\*.* >

< %systemroot%\system32\Language\*.* >

< %systemroot%\system32\Settings\*.* >

< %systemroot%\system32\*.quo >

< %SYSTEMROOT%\AppPatch\*.exe >

< %SYSTEMROOT%\inf\*.exe >
[2009.02.04 20:05:36 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\inf\unregmp2.exe

< %SYSTEMROOT%\Installer\*.exe >

< %USERPROFILE%\Templates\*.* >

< %systemroot%\system32\config\*.bak2 >

< %systemroot%\system32\Computers\*.* >

< %SystemRoot%\system32\Sound\*.* >

< %SystemRoot%\system32\SpecialImg\*.* >

< %SystemRoot%\system32\code\*.* >

< %SystemRoot%\system32\draft\*.* >

< %SystemRoot%\system32\MSSSys\*.* >

< %ProgramFiles%\Javascript\*.* >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2013-07-11 01:17:44

< End of report >

[jaro3]

Odinstaluj:
Spybot - Search & Destroy
AdBlock
Comodo Dragon


Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (WinRing0_1_2_0) -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys File not found
[2010.04.09 20:17:36 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\me171hem.default\searchplugins\qipsearch.xml
[2013.07.07 01:21:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\extensions
[2013.07.07 01:21:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
O1 HOSTS File: ([2013.07.07 16:05:59 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O32 - AutoRun File - [2010.09.08 09:26:33 | 000,000,075 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2012.04.24 19:22:52 | 000,000,041 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2012.04.24 19:22:52 | 000,000,041 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
Drivers32: VIDC.FPS1 - frapsvid.dll File not found
[2013.02.16 13:24:43 | 000,017,156 | ---- | M] () -- C:\AdwCleaner[R1].txt
[2013.02.16 13:25:08 | 000,017,217 | ---- | M] () -- C:\AdwCleaner[R2].txt
[2013.06.08 22:10:42 | 000,004,263 | ---- | M] () -- C:\AdwCleaner[R3].txt
[2013.06.08 22:12:25 | 000,004,323 | ---- | M] () -- C:\AdwCleaner[R4].txt
[2013.06.08 23:44:53 | 000,004,383 | ---- | M] () -- C:\AdwCleaner[R5].txt
[2013.02.16 13:25:21 | 000,017,387 | ---- | M] () -- C:\AdwCleaner[S1].txt
[2013.06.08 23:44:57 | 000,004,558 | ---- | M] () -- C:\AdwCleaner[S2].txt

:Files
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
C:\WINDOWS\imsins.BAK
C:\Documents and Settings\uzivatel\Plocha\Spybot - Search & Destroy.lnk
C:\WINDOWS\System32\drivers\etc\Hosts
C:\WINDOWS\SW_Win3112X32.DLL

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

C:\Documents and Settings\All Users\Data aplikací\Activ Software---znáš ten program?

C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\COMODO
C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\COMODO
C:\Documents and Settings\All Users\Nabídka Start\Programy\Comodo
C:\WINDOWS\System32\certsentry.dll
C:\Program Files\Comodo
taky progtramy od Comoda , bys mohl odinstalovat.-.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\wa.INI
C:\WINDOWS\EngineExe.INI
C:\WINDOWS\PanelExe.INI
C:\WINDOWS\System32\xlive.dll.cat

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

[ondrej01]

LOG z OTL:

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Prefs.js: "Google" removed from browser.search.selectedEngine
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE5D279F-081B-4404-994D-C6B60AAEBA6D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE5D279F-081B-4404-994D-C6B60AAEBA6D}\ not found.
HidServ removed from NetSvcs value successfully!
Ias removed from NetSvcs value successfully!
Iprip removed from NetSvcs value successfully!
Nwsapagent removed from NetSvcs value successfully!
WmdmPmSp removed from NetSvcs value successfully!
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
< ipconfig /flushdns /c >
Konfigurace protokolu IP systému Windows
Mezipaměť překládání DNS byla úspěšně vyprázdněna.
C:\Documents and Settings\uzivatel\Plocha\cmd.bat deleted successfully.
C:\Documents and Settings\uzivatel\Plocha\cmd.txt deleted successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Roger Vaz Cardoso

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: uzivatel
->Temp folder emptied: 2969935 bytes
->Temporary Internet Files folder emptied: 368325 bytes
->FireFox cache emptied: 100522974 bytes
->Google Chrome cache emptied: 376796366 bytes
->Flash cache emptied: 14456 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 80551 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 340962835 bytes

Total Files Cleaned = 784,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Roger Vaz Cardoso

User: UpdatusUser

User: uzivatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 07072013_160556

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[ondrej01]

Ten Activ Software nejspíš znám, odinstaloval jsem ho.. nikdy jsem to nepoužil.

Programy od Comoda? Nevím jaké, přes ovládací panely jsem odinstaloval Comoda a ručně smazal bordel co zůstal v Program Files/Comodo který už nešel přes Ovládací panely dát pryč.

Možnosti složky jsem měl nastavené přesně jako popisujete.

Virustotaly:

xlive.dll.cat https://www.virustotal.com/cs/file/8343 ... 373898420/
EngineExe.INI https://www.virustotal.com/cs/file/e3b0 ... 373898250/
wa.INI https://www.virustotal.com/cs/file/6a9b ... 373898205/
PanelExe.INI https://www.virustotal.com/cs/file/e3b0 ... 373898294/

a weby stále nefunkční.