Prosím o kontrolu logu - vyřešeno

[Gabryš]

OTL logfile created on: 20.10.2013 17:39:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Gabryš\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,72 Gb Available Physical Memory | 36,12% Memory free
3,85 Gb Paging File | 2,67 Gb Available in Paging File | 69,46% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,91 Gb Total Space | 89,60 Gb Free Space | 38,47% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 313,08 Gb Free Space | 67,22% Space Free | Partition Type: NTFS
Drive E: | 232,85 Gb Total Space | 209,07 Gb Free Space | 89,79% Space Free | Partition Type: NTFS
Drive G: | 442,98 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 930,86 Gb Total Space | 424,56 Gb Free Space | 45,61% Space Free | Partition Type: NTFS
Drive J: | 465,65 Gb Total Space | 192,17 Gb Free Space | 41,27% Space Free | Partition Type: FAT32

Computer Name: JURAI-17DEB283D | User Name: Gabryš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Gabryš\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Guard.exe (Ashampoo Development GmbH & Co. KG)
PRC - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
PRC - C:\Program Files\AVG\AVG2014\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\AVG\AVG2014\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgemcx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files\AVG\AVG2014\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Opera\opera.exe (Opera Software)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
PRC - C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech, Inc.)
PRC - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\DfSdkS.exe (mst software GmbH, Germany)
PRC - C:\WINDOWS\mHotkey.exe ()
PRC - C:\WINDOWS\HKExt3.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\ChiFuncExt.exe (Chicony)


========== Modules (No Company Name) ==========

MOD - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
MOD - C:\Program Files\NVIDIA Corporation\nView\nView.dll ()
MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
MOD - C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll ()
MOD - C:\WINDOWS\mHotkey.exe ()
MOD - C:\WINDOWS\HKExt3.exe ()
MOD - C:\WINDOWS\HKNTDLL.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\system32\devenum.dll ()
MOD - C:\WINDOWS\system32\nvshell.dll ()


========== Services (SafeList) ==========

SRV - (AAVService) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (avgwd) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (WO_LiveService) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe ()
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (LBTServ) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (DfSdkS) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\DfSdkS.exe (mst software GmbH, Germany)
SRV - (GEST Service) -- C:\Program Files\GIGABYTE\GEST\GSvr.exe ()
SRV - (LVSrvLauncher) -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe (Logitech Inc.)


========== Driver Services (SafeList) ==========

DRV - (XDva394) -- C:\WINDOWS\system32\XDva394.sys File not found
DRV - (XDva391) -- C:\WINDOWS\system32\XDva391.sys File not found
DRV - (XDva390) -- C:\WINDOWS\system32\XDva390.sys File not found
DRV - (XDva387) -- C:\WINDOWS\system32\XDva387.sys File not found
DRV - (XDva385) -- C:\WINDOWS\system32\XDva385.sys File not found
DRV - (WDICA) -- File not found
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (LVRS) -- system32\DRIVERS\lvrs.sys File not found
DRV - (lvpopflt) -- system32\DRIVERS\lvpopflt.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FilterService) -- system32\DRIVERS\lvuvcflt.sys File not found
DRV - (bulbashy) -- C:\WINDOWS\system32\drivers\bulbashy.sys File not found
DRV - (BTHidMgr) -- System32\Drivers\BTHidMgr.sys File not found
DRV - (BTHidEnum) -- System32\Drivers\vbtenum.sys File not found
DRV - (BT) -- system32\DRIVERS\btnetdrv.sys File not found
DRV - (BlueletSCOAudio) -- system32\DRIVERS\BlueletSCOAudio.sys File not found
DRV - (BlueletAudio) -- system32\DRIVERS\blueletaudio.sys File not found
DRV - (ac5cu5ro) -- File not found
DRV - (AAVScan) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_IFSXP32.sys ()
DRV - (gdrv) -- C:\WINDOWS\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgrkx86) -- C:\WINDOWS\system32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSHX) -- C:\WINDOWS\system32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avglogx) -- C:\WINDOWS\system32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.)
DRV - (a2injectiondriver) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\a2dix86.sys (Emsisoft GmbH)
DRV - (cleanhlp) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\cleanhlp32.sys (Emsisoft GmbH)
DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgdiskx) -- C:\WINDOWS\system32\drivers\avgdiskx.sys (AVG Technologies CZ, s.r.o.)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (a2util) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\a2util32.sys (Emsisoft GmbH)
DRV - (JRAID) -- C:\WINDOWS\system32\drivers\jraid.sys (JMicron Technology Corp.)
DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (LEqdUsb) -- C:\WINDOWS\system32\drivers\LEqdUsb.sys (Logitech, Inc.)
DRV - (LHidEqd) -- C:\WINDOWS\system32\drivers\LHidEqd.sys (Logitech, Inc.)
DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (RTLTEAMING) -- C:\WINDOWS\system32\drivers\RTLTEAMING.SYS (Realtek Semiconductor Corporation)
DRV - (RtNdPt5x) -- C:\WINDOWS\system32\drivers\RtNdPt5x.sys (Realtek Semiconductor Corporation )
DRV - (RTLVLANMP) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation )
DRV - (RTLVLAN) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation )
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (LiveTunerPM) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys ()
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys ()
DRV - (ivusb) -- C:\WINDOWS\system32\drivers\ivusb.sys (Initio Corporation)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (WDC_SAM) -- C:\WINDOWS\system32\drivers\wdcsam.sys (Western Digital Technologies)
DRV - (ET5Drv) -- C:\WINDOWS\system32\drivers\ET5Drv.sys (Windows (R) 2000 DDK provider)
DRV - (LVMVDrv) -- C:\WINDOWS\system32\drivers\LVMVdrv.sys (Logitech Inc.)
DRV - (LVcKap) -- C:\WINDOWS\system32\drivers\Lvckap.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{E538FB74-B2D2-4B46-9553-A6DE405F19C7}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: E:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010.11.28 03:48:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012.03.13 19:16:57 | 000,000,000 | ---D | M]

[2013.01.19 23:11:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions
[2013.10.09 20:23:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012.03.08 18:50:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions
[2012.03.08 18:50:54 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2013.10.09 20:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions
[2013.10.09 20:23:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\extensions
[2012.11.15 19:30:12 | 000,214,020 | ---- | M] () (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\socksharedownloader@socksharedownloader.com.xpi

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\

O1 HOSTS File: ([2013.10.10 11:22:42 | 000,000,021 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (JMicron Technology Corp.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ashampoo Anti-Virus Guard] C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Guard.exe (Ashampoo Development GmbH & Co. KG)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [HKExt3] C:\WINDOWS\HKExt3.exe ()
O4 - HKLM..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LchDrvKey] C:\WINDOWS\LchDrvKey.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [Steam] D:\Program Files\Steam\Steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... BC/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {00000161-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... /msaud.CAB (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9dmo.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 0701191093 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EC33DF25-FF99-42D3-BBF6-D4224C20639D}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.25 17:15:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.01.28 22:00:27 | 000,000,088 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{2c34e4cc-f89b-11df-99d2-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013.10.20 17:38:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Gabryš\Desktop\OTL.exe
[2013.10.20 17:15:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Gabryš\Recent
[2013.10.17 15:46:13 | 000,098,304 | ---- | C] (Apple Computer, Inc.) -- C:\WINDOWS\System32\qttask.exe
[2013.10.15 13:27:11 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2013.10.15 12:30:19 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe
[2013.10.15 12:29:50 | 000,000,000 | ---D | C] -- C:\SWSETUP
[2013.10.15 12:24:39 | 000,000,000 | ---D | C] -- C:\temp
[2013.10.15 12:09:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Application Data\Systweak
[2013.10.15 12:09:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Advanced Driver Updater
[2013.10.15 12:09:29 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced Driver Updater
[2013.10.10 01:19:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Desktop\odvirování
[2013.10.09 23:39:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2013.10.09 20:36:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Application Data\Malwarebytes
[2013.10.09 20:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.10.09 20:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013.10.09 20:36:12 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.10.09 20:36:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.10.09 20:16:32 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.10.09 00:32:29 | 017,750,408 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013.10.09 00:31:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Start Menu\Programs\HiJackThis
[2013.10.07 19:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ashampoo
[2013.10.06 21:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Application Data\AVG2014
[2013.10.06 21:48:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG
[2013.10.06 21:46:14 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013.10.06 21:46:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG2014
[2013.10.06 21:45:32 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2013.10.06 21:43:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013.10.06 21:43:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\MFAData
[2013.10.06 21:43:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2013.10.06 21:43:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\Avg2014
[2013.09.30 17:59:28 | 000,229,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013.09.30 17:56:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2013.09.26 11:27:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\frduefah
[2013.09.25 19:50:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

========== Files - Modified Within 30 Days ==========
=>

[Reklama]

[Gabryš]

[2013.10.20 17:38:31 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Gabryš\Desktop\OTL.exe
[2013.10.20 17:37:57 | 000,010,368 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2013.10.20 17:37:03 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.10.20 17:34:49 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.10.20 17:34:49 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.20 17:34:49 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.20 17:34:49 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1003.job
[2013.10.20 17:34:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.10.20 17:34:35 | 000,268,600 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.10.20 17:32:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.10.20 17:03:44 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.10.19 15:49:13 | 000,513,470 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.10.19 15:49:13 | 000,092,198 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.10.18 16:02:40 | 000,000,388 | ---- | M] () -- C:\WINDOWS\tasks\One-Click Optimizer.job
[2013.10.18 01:45:39 | 000,012,800 | ---- | M] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.17 17:59:03 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013.10.17 15:46:13 | 000,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\WINDOWS\System32\qttask.exe
[2013.10.17 15:42:54 | 000,001,019 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Player Classic.lnk
[2013.10.17 15:42:54 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2013.10.17 15:42:54 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\ACE Mega CoDecS Pack DashBoard.lnk
[2013.10.16 12:10:29 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\AdvancedDriverUpdater_UPDATES.job
[2013.10.15 17:01:36 | 000,138,032 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2013.10.15 17:01:30 | 000,281,688 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2013.10.15 12:30:19 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe
[2013.10.15 12:30:08 | 001,523,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2013.10.15 02:06:50 | 000,000,571 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\7backup.lnk
[2013.10.13 10:00:00 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.10 11:22:42 | 000,000,021 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013.10.09 20:26:10 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
[2013.10.09 20:23:45 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013.10.09 20:23:45 | 000,000,877 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\Zástupce - chrome.lnk
[2013.10.09 20:23:45 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013.10.09 19:43:04 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2013.10.09 19:40:36 | 000,000,079 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2013.10.09 17:32:07 | 017,750,408 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013.10.09 01:53:23 | 001,799,925 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\frduerwt
[2013.10.09 01:53:23 | 000,000,010 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\frdueroo
[2013.10.08 22:32:32 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.10.08 22:32:32 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.10.08 16:52:51 | 000,000,012 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\deadbeef
[2013.10.08 16:06:19 | 000,000,280 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurwe
[2013.10.08 16:06:19 | 000,000,014 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurof
[2013.10.08 14:57:29 | 000,000,326 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\roasreha
[2013.10.08 14:57:29 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\roasredr
[2013.10.07 19:23:52 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 10.lnk
[2013.10.07 19:17:26 | 000,000,886 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Anti-Virus.lnk
[2013.10.07 18:22:49 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2013.10.07 01:41:27 | 000,014,122 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapytq
[2013.10.07 01:41:27 | 000,000,025 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapyui
[2013.10.07 01:22:36 | 000,030,809 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigqt
[2013.10.07 01:22:36 | 000,000,018 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigao
[2013.10.06 20:20:49 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013.09.30 20:50:15 | 000,005,872 | ---- | M] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
[2013.09.30 18:24:40 | 000,001,565 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\IrfanView Thumbnails.lnk
[2013.09.30 18:24:40 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\IrfanView.lnk
[2013.09.30 17:59:30 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013.09.29 21:17:59 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
[2013.09.29 21:17:59 | 000,000,015 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgho
[2013.09.29 13:58:12 | 000,000,142 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
[2013.09.29 13:58:12 | 000,000,020 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhho
[2013.09.29 00:06:21 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.09.25 19:41:45 | 000,043,326 | ---- | M] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg
[2013.09.25 11:41:34 | 000,000,741 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20131002-110713.backup
[2013.09.24 22:20:41 | 000,000,016 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\1b7d5af6
[2013.09.24 22:20:41 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\995d1850
[2013.09.24 22:20:41 | 000,000,002 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\da6d39a3
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\xoroke.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\xinem.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\qozexy.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\pytyx.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\hesir.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\gixyhe.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\filuri.exe
[2013.09.24 22:20:27 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\bilic.exe
[2013.09.23 19:35:28 | 001,172,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2013.09.23 19:35:28 | 000,841,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2013.09.23 19:35:28 | 000,766,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2013.09.23 19:35:28 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2013.09.23 19:35:28 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2013.09.23 19:35:28 | 000,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2013.09.23 19:35:28 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2013.09.23 19:35:28 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll
[2013.09.23 19:35:28 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2013.09.23 19:35:27 | 006,108,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2013.09.23 19:35:27 | 003,626,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2013.09.23 19:35:27 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2013.09.23 19:35:27 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2013.09.23 19:35:27 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2013.09.23 19:35:27 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2013.09.23 19:35:27 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2013.09.23 19:35:27 | 000,496,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2013.09.23 19:35:27 | 000,480,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2013.09.23 19:35:27 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2013.09.23 19:35:27 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2013.09.23 19:35:27 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieapfltr.dll
[2013.09.23 19:35:27 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2013.09.23 19:35:27 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll
[2013.09.23 19:35:27 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2013.09.23 19:35:27 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2013.09.23 19:35:27 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll
[2013.09.23 19:35:27 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2013.09.23 19:35:27 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll
[2013.09.23 19:35:27 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2013.09.23 19:35:27 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll
[2013.09.23 19:35:27 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2013.09.23 19:35:27 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2013.09.23 19:35:27 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2013.09.23 19:35:27 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll
[2013.09.23 19:35:27 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2013.09.23 19:35:27 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll
[2013.09.23 19:35:27 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2013.09.23 19:35:27 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2013.09.23 19:35:27 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2013.09.23 19:35:27 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2013.09.23 19:35:27 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2013.09.23 19:35:27 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2013.09.23 19:35:27 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll
[2013.09.23 19:35:27 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2013.09.23 19:35:27 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2013.09.23 19:35:27 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2013.09.23 19:35:27 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2013.09.23 19:35:27 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2013.09.23 19:12:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieudinit.exe
[2013.09.23 19:12:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2013.09.23 19:12:19 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2013.09.23 19:12:19 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2013.09.23 19:08:07 | 000,643,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2013.09.23 19:06:31 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakui.dll
[2013.09.23 19:06:31 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2013.09.22 19:29:49 | 000,281,688 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2013.09.22 07:36:00 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1003.job

========== Files Created - No Company Name ==========

[2013.10.17 15:42:54 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2013.10.15 12:10:02 | 000,000,280 | ---- | C] () -- C:\WINDOWS\tasks\AdvancedDriverUpdater_UPDATES.job
[2013.10.15 02:06:54 | 000,000,571 | ---- | C] () -- C:\Documents and Settings\Gabryš\Desktop\7backup.lnk
[2013.10.09 19:40:26 | 000,000,079 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2013.10.08 16:52:51 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\deadbeef
[2013.10.08 16:50:36 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\filuri.exe
[2013.10.08 16:50:33 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\gixyhe.exe
[2013.10.08 16:04:45 | 000,000,280 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurwe
[2013.10.08 16:04:45 | 000,000,014 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurof
[2013.10.08 15:15:30 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\bilic.exe
[2013.10.08 14:33:47 | 000,000,326 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\roasreha
[2013.10.08 14:33:47 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\roasredr
[2013.10.08 14:26:14 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xoroke.exe
[2013.10.08 00:18:24 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\pytyx.exe
[2013.10.08 00:00:23 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\qozexy.exe
[2013.10.07 19:29:04 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xinem.exe
[2013.10.07 19:24:09 | 000,000,388 | ---- | C] () -- C:\WINDOWS\tasks\One-Click Optimizer.job
[2013.10.07 19:23:52 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 10.lnk
[2013.10.07 19:17:26 | 000,000,886 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Anti-Virus.lnk
[2013.10.07 00:52:41 | 000,030,809 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigqt
[2013.10.07 00:52:41 | 000,000,018 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigao
[2013.09.30 20:50:13 | 000,005,872 | ---- | C] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
[2013.09.29 21:14:40 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
[2013.09.29 21:14:40 | 000,000,015 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgho
[2013.09.29 13:58:12 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
[2013.09.29 13:58:12 | 000,000,020 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhho
[2013.09.26 11:45:39 | 000,000,333 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\frduerwt
[2013.09.26 11:45:39 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\frdueroo
[2013.09.25 19:41:43 | 000,043,326 | ---- | C] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg
[2013.09.25 11:20:19 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hesir.exe
[2013.09.25 00:35:05 | 000,014,122 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapytq
[2013.09.25 00:35:05 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapyui
[2013.09.24 22:20:41 | 000,000,016 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\1b7d5af6
[2013.09.24 22:20:41 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\995d1850
[2013.09.24 22:20:41 | 000,000,002 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\da6d39a3
[2013.09.24 22:20:40 | 001,799,925 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\frduerwt
[2013.09.24 22:20:40 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\frdueroo
[2013.07.31 19:04:44 | 000,030,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\ET5Drv.sys.dump
[2013.07.31 18:15:31 | 000,170,753 | ---- | C] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\9f2c10a0-f56c-464d-b90f-23109eb5be53
[2013.04.18 19:21:46 | 000,000,143 | ---- | C] () -- C:\WINDOWS\ScreenHunter.INI
[2013.03.27 03:47:51 | 000,003,068 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin
[2013.03.21 01:46:09 | 000,138,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2013.03.21 00:12:40 | 000,281,688 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2013.03.21 00:12:38 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2012.12.19 21:54:02 | 000,018,191 | ---- | C] () -- C:\Documents and Settings\Gabryš\tbs.jar
[2012.12.19 21:54:01 | 003,911,040 | ---- | C] () -- C:\Documents and Settings\Gabryš\RapidShareManager.jar
[2012.12.19 21:54:01 | 000,080,713 | ---- | C] () -- C:\Documents and Settings\Gabryš\License Agreement.pdf
[2012.11.23 01:32:42 | 000,000,810 | ---- | C] () -- C:\WINDOWS\Rtcw.INI
[2012.09.20 20:03:37 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2012.02.18 14:02:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012.02.16 07:19:47 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.17 11:22:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\graphedit.INI
[2012.01.07 20:47:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI
[2012.01.07 20:42:01 | 000,081,936 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2012.01.07 20:38:04 | 000,025,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2011.10.26 19:40:20 | 002,313,192 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2010.12.26 23:39:25 | 000,282,686 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1801674531-343818398-839522115-1003-0.dat
[2010.12.26 23:39:21 | 002,148,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1801674531-343818398-839522115-1004-0.dat
[2010.12.26 23:39:19 | 000,282,686 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010.12.17 14:14:58 | 000,012,800 | ---- | C] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.01 04:58:29 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Gabryš\default.pls
[2010.11.30 00:43:39 | 000,000,272 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\default.rss
[2010.11.25 18:31:36 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat

========== ZeroAccess Check ==========

[2010.11.25 19:28:30 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 02:12:05 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 14:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 02:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.07.20 10:15:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013.10.07 19:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ashampoo
[2013.10.09 19:44:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2013.10.06 21:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG2014
[2011.07.06 22:17:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Awem
[2010.11.25 20:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2013.10.06 21:43:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010.11.26 23:11:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010.12.22 12:25:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Whiz
[2010.12.15 22:24:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure
[2013.03.26 20:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg
[2012.11.12 22:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GoldWave
[2013.04.20 00:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2013.10.20 17:38:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2012.11.22 17:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2013.10.11 19:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RFA_Backups
[2011.06.21 00:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SugarGames
[2011.04.20 18:55:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tages
[2012.02.08 01:27:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011.05.25 23:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2011.05.25 23:30:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2011.07.09 10:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2013.03.26 20:19:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\1-abc
[2010.12.29 21:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\AnvSoft
[2012.03.30 16:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Audacity
[2013.10.06 21:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\AVG2014
[2013.03.26 20:26:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\avidemux
[2013.04.17 15:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\BSplayer
[2013.04.17 15:33:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\BSplayer Pro
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Conversations Network
[2012.03.22 14:56:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\cYo
[2013.03.07 13:01:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\DAEMON Tools Lite
[2013.01.19 23:39:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\DVDVideoSoft
[2011.11.23 01:40:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\EnchantedCavern
[2012.01.29 23:41:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ERS G-Studio
[2012.12.14 10:26:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ERS Game Studios
[2011.04.04 22:05:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\EurekaLog
[2013.03.17 21:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\FileZilla
[2010.12.16 02:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\GHISLER
[2013.01.19 23:41:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\HandBrake
[2011.02.09 16:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Import Audio from Video
[2011.11.27 22:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\JaiboGames
[2012.01.07 20:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Leadertech
[2013.07.18 17:53:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\LocalLow
[2011.04.09 13:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\mkvtoolnix
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Mp3tag
[2012.02.10 00:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Need for Speed World
[2013.10.07 01:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ObviousIdea
[2010.11.25 18:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Opera
[2010.11.29 23:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Publish Providers
[2013.05.30 12:32:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Seznam.cz
[2010.12.26 21:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Sony
[2011.03.02 17:13:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Sound Editor Deluxe
[2011.03.13 17:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Spacejock Software
[2011.11.23 17:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\SuperEasy Software
[2013.10.15 12:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Systweak
[2012.12.14 17:31:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TagScanner
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TeamViewer
[2011.04.04 21:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\thecleaner
[2013.10.06 21:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TuneUp Software
[2010.11.27 00:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Uniblue
[2012.01.22 19:01:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\URSE Games
[2012.07.25 23:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\uTorrent
[2011.06.15 18:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\VitySoft
[2010.11.29 18:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Xilisoft
[2012.12.21 17:12:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\xrecode2

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\autochk.EXE:SummaryInformation
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EE323A4

< End of report >

[jaro3]

To je ale bordel...

Kromě Ashampoo Anti-Virus , tam máš AVG2014 a MSE.

Nejprve zkus ty antiviry odinstalovat.

AVG 2014,
Nejprve použij reset_access:
http://download.avg.com/filedir/util/re ... 014_cz.exe



Poté remover:

32bit OS:
http://download.avg.com/filedir/util/su ... 4_4116.exe


64bit OS:
http://download.avg.com/filedir/util/su ... 4_4116.exe

Ruční odinstalace programu Microsoft Security Essentials, pokud jej nelze odinstalovat pomocí ovládacího panelu Přidat nebo odebrat programy

http://support.microsoft.com/kb/2435760

Teda pokud trváš na Ashampoo Anti-Virus..

Pak nový OTL.

[Gabryš]

AVG i MSE odstraněno.
OTL logfile created on: 25.10.2013 14:30:40 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Gabryš\Desktop\odvirování
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,93 Gb Available Physical Memory | 46,62% Memory free
3,85 Gb Paging File | 3,00 Gb Available in Paging File | 77,95% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,91 Gb Total Space | 86,23 Gb Free Space | 37,02% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 313,11 Gb Free Space | 67,23% Space Free | Partition Type: NTFS
Drive E: | 232,85 Gb Total Space | 209,11 Gb Free Space | 89,80% Space Free | Partition Type: NTFS
Drive G: | 442,98 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 930,86 Gb Total Space | 424,56 Gb Free Space | 45,61% Space Free | Partition Type: NTFS
Drive J: | 465,65 Gb Total Space | 191,97 Gb Free Space | 41,23% Space Free | Partition Type: FAT32

Computer Name: JURAI-17DEB283D | User Name: Gabryš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Gabryš\Desktop\odvirování\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Guard.exe (Ashampoo Development GmbH & Co. KG)
PRC - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
PRC - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe (NVIDIA Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
PRC - C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech, Inc.)
PRC - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\DfSdkS.exe (mst software GmbH, Germany)
PRC - C:\WINDOWS\mHotkey.exe ()
PRC - C:\WINDOWS\HKExt3.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\ChiFuncExt.exe (Chicony)


========== Modules (No Company Name) ==========

MOD - C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll ()
MOD - C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll ()
MOD - C:\WINDOWS\mHotkey.exe ()
MOD - C:\WINDOWS\HKExt3.exe ()
MOD - C:\WINDOWS\HKNTDLL.dll ()


========== Services (SafeList) ==========

SRV - (AAVService) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Service_XP.exe ()
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (WO_LiveService) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe ()
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (LBTServ) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (DfSdkS) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\DfSdkS.exe (mst software GmbH, Germany)
SRV - (GEST Service) -- C:\Program Files\GIGABYTE\GEST\GSvr.exe ()
SRV - (LVSrvLauncher) -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe (Logitech Inc.)


========== Driver Services (SafeList) ==========

DRV - (XDva394) -- C:\WINDOWS\system32\XDva394.sys File not found
DRV - (XDva391) -- C:\WINDOWS\system32\XDva391.sys File not found
DRV - (XDva390) -- C:\WINDOWS\system32\XDva390.sys File not found
DRV - (XDva387) -- C:\WINDOWS\system32\XDva387.sys File not found
DRV - (XDva385) -- C:\WINDOWS\system32\XDva385.sys File not found
DRV - (WDICA) -- File not found
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (LVRS) -- system32\DRIVERS\lvrs.sys File not found
DRV - (lvpopflt) -- system32\DRIVERS\lvpopflt.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FilterService) -- system32\DRIVERS\lvuvcflt.sys File not found
DRV - (bulbashy) -- C:\WINDOWS\system32\drivers\bulbashy.sys File not found
DRV - (BTHidMgr) -- System32\Drivers\BTHidMgr.sys File not found
DRV - (BTHidEnum) -- System32\Drivers\vbtenum.sys File not found
DRV - (BT) -- system32\DRIVERS\btnetdrv.sys File not found
DRV - (BlueletSCOAudio) -- system32\DRIVERS\BlueletSCOAudio.sys File not found
DRV - (BlueletAudio) -- system32\DRIVERS\blueletaudio.sys File not found
DRV - (api5z1qk) -- File not found
DRV - (AAVScan) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_IFSXP32.sys ()
DRV - (gdrv) -- C:\WINDOWS\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (a2injectiondriver) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\a2dix86.sys (Emsisoft GmbH)
DRV - (cleanhlp) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\cleanhlp32.sys (Emsisoft GmbH)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (a2util) -- C:\Program Files\Ashampoo\Ashampoo Anti-Virus\a2util32.sys (Emsisoft GmbH)
DRV - (JRAID) -- C:\WINDOWS\system32\drivers\jraid.sys (JMicron Technology Corp.)
DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (LEqdUsb) -- C:\WINDOWS\system32\drivers\LEqdUsb.sys (Logitech, Inc.)
DRV - (LHidEqd) -- C:\WINDOWS\system32\drivers\LHidEqd.sys (Logitech, Inc.)
DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (RTLTEAMING) -- C:\WINDOWS\system32\drivers\RTLTEAMING.SYS (Realtek Semiconductor Corporation)
DRV - (RtNdPt5x) -- C:\WINDOWS\system32\drivers\RtNdPt5x.sys (Realtek Semiconductor Corporation )
DRV - (RTLVLANMP) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation )
DRV - (RTLVLAN) -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS (Realtek Semiconductor Corporation )
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (LiveTunerPM) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys ()
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys ()
DRV - (ivusb) -- C:\WINDOWS\system32\drivers\ivusb.sys (Initio Corporation)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (WDC_SAM) -- C:\WINDOWS\system32\drivers\wdcsam.sys (Western Digital Technologies)
DRV - (ET5Drv) -- C:\WINDOWS\system32\drivers\ET5Drv.sys (Windows (R) 2000 DDK provider)
DRV - (LVMVDrv) -- C:\WINDOWS\system32\drivers\LVMVdrv.sys (Logitech Inc.)
DRV - (LVcKap) -- C:\WINDOWS\system32\drivers\Lvckap.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{E538FB74-B2D2-4B46-9553-A6DE405F19C7}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Gabryš\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: E:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010.11.28 03:48:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012.03.13 19:16:57 | 000,000,000 | ---D | M]

[2013.01.19 23:11:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions
[2013.10.09 20:23:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012.03.08 18:50:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions
[2012.03.08 18:50:54 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2013.10.09 20:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions
[2013.10.09 20:23:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\extensions
[2012.11.15 19:30:12 | 000,214,020 | ---- | M] () (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\socksharedownloader@socksharedownloader.com.xpi

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: No name found = C:\Documents and Settings\Gabryš\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\

O1 HOSTS File: ([2013.10.10 11:22:42 | 000,000,021 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (JMicron Technology Corp.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ashampoo Anti-Virus Guard] C:\Program Files\Ashampoo\Ashampoo Anti-Virus\AAV_Guard.exe (Ashampoo Development GmbH & Co. KG)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [HKExt3] C:\WINDOWS\HKExt3.exe ()
O4 - HKLM..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LchDrvKey] C:\WINDOWS\LchDrvKey.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [Steam] D:\Program Files\Steam\Steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... BC/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {00000161-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... /msaud.CAB (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9dmo.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 0701191093 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EC33DF25-FF99-42D3-BBF6-D4224C20639D}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Gabryš\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.25 17:15:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.01.28 22:00:27 | 000,000,088 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{2c34e4cc-f89b-11df-99d2-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013.10.25 11:07:40 | 003,386,520 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Gabryš\Desktop\avg_remover_stf_x86_2014_4116.exe
[2013.10.25 01:36:11 | 000,000,000 | ---D | C] -- C:\AVGTemp
[2013.10.21 21:11:56 | 001,049,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3233158.dll
[2013.10.21 21:11:56 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco3233158.dll
[2013.10.20 17:15:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Gabryš\Recent
[2013.10.17 15:46:13 | 000,098,304 | ---- | C] (Apple Computer, Inc.) -- C:\WINDOWS\System32\qttask.exe
[2013.10.15 13:27:11 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2013.10.15 12:30:19 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe
[2013.10.15 12:29:50 | 000,000,000 | ---D | C] -- C:\SWSETUP
[2013.10.15 12:24:39 | 000,000,000 | ---D | C] -- C:\temp
[2013.10.15 12:09:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Application Data\Systweak
[2013.10.15 12:09:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Advanced Driver Updater
[2013.10.15 12:09:29 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced Driver Updater
[2013.10.10 01:19:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Desktop\odvirování
[2013.10.09 23:39:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2013.10.09 20:36:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Application Data\Malwarebytes
[2013.10.09 20:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.10.09 20:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013.10.09 20:36:12 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.10.09 20:36:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.10.09 20:16:32 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.10.09 00:32:29 | 017,750,408 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013.10.09 00:31:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gabryš\Start Menu\Programs\HiJackThis
[2013.10.07 19:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ashampoo
[2013.10.06 21:43:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013.09.30 17:59:28 | 000,229,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013.09.30 17:56:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2013.09.26 11:27:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\frduefah
[2013.09.25 19:50:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

========== Files - Modified Within 30 Days ==========

[2013.10.25 14:32:16 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.10.25 14:26:08 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2013.10.25 14:24:36 | 000,010,870 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2013.10.25 14:03:01 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.10.25 13:46:34 | 000,005,078 | ---- | M] () -- C:\FixitRegBackup.reg
[2013.10.25 12:38:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.10.25 12:38:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.10.25 12:37:59 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.25 12:37:59 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.25 12:37:59 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1003.job
[2013.10.25 12:36:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.10.25 11:41:01 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013.10.25 11:07:40 | 003,386,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Gabryš\Desktop\avg_remover_stf_x86_2014_4116.exe
[2013.10.25 01:35:28 | 000,587,448 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\reset_access_avg2014_cz.exe
[2013.10.21 21:24:19 | 001,125,540 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013.10.21 21:24:19 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013.10.21 21:24:11 | 001,125,540 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013.10.20 23:36:42 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013.10.20 17:34:35 | 000,268,600 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.10.19 15:49:13 | 000,513,470 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.10.19 15:49:13 | 000,092,198 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.10.18 16:02:40 | 000,000,388 | ---- | M] () -- C:\WINDOWS\tasks\One-Click Optimizer.job
[2013.10.18 01:45:39 | 000,012,800 | ---- | M] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.17 15:46:13 | 000,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\WINDOWS\System32\qttask.exe
[2013.10.17 15:42:54 | 000,001,019 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Player Classic.lnk
[2013.10.17 15:42:54 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2013.10.17 15:42:54 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\ACE Mega CoDecS Pack DashBoard.lnk
[2013.10.16 12:10:29 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\AdvancedDriverUpdater_UPDATES.job
[2013.10.16 02:32:54 | 022,171,648 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2013.10.16 02:32:54 | 017,551,360 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2013.10.16 02:32:54 | 009,498,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2013.10.16 02:32:54 | 009,457,664 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll
[2013.10.16 02:32:54 | 004,077,440 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2013.10.16 02:32:54 | 003,555,144 | ---- | M] () -- C:\WINDOWS\System32\nvdata.data
[2013.10.16 02:32:54 | 002,951,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2013.10.16 02:32:54 | 002,747,168 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2013.10.16 02:32:54 | 002,631,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2013.10.16 02:32:54 | 001,049,888 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco3233158.dll
[2013.10.16 02:32:54 | 000,893,728 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco3233158.dll
[2013.10.16 02:32:54 | 000,018,598 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2013.10.15 17:01:36 | 000,138,032 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2013.10.15 17:01:30 | 000,281,688 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2013.10.15 12:30:19 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\HideWin.exe
[2013.10.15 12:30:08 | 001,523,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2013.10.15 02:06:50 | 000,000,571 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\7backup.lnk
[2013.10.13 10:00:00 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1004.job
[2013.10.10 11:22:42 | 000,000,021 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013.10.09 20:26:10 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
[2013.10.09 20:23:45 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013.10.09 20:23:45 | 000,000,877 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\Zástupce - chrome.lnk
[2013.10.09 20:23:45 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013.10.09 19:40:36 | 000,000,079 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2013.10.09 17:32:07 | 017,750,408 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013.10.09 01:53:23 | 001,799,925 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\frduerwt
[2013.10.09 01:53:23 | 000,000,010 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\frdueroo
[2013.10.08 22:32:32 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.10.08 22:32:32 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.10.08 16:52:51 | 000,000,012 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\deadbeef
[2013.10.08 16:06:19 | 000,000,280 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurwe
[2013.10.08 16:06:19 | 000,000,014 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurof
[2013.10.08 14:57:29 | 000,000,326 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\roasreha
[2013.10.08 14:57:29 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\roasredr
[2013.10.07 19:23:52 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 10.lnk
[2013.10.07 19:17:26 | 000,000,886 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Anti-Virus.lnk
[2013.10.07 18:22:49 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2013.10.07 01:41:27 | 000,014,122 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapytq
[2013.10.07 01:41:27 | 000,000,025 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapyui
[2013.10.07 01:22:36 | 000,030,809 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigqt
[2013.10.07 01:22:36 | 000,000,018 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigao
[2013.10.06 20:20:49 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013.09.30 20:50:15 | 000,005,872 | ---- | M] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
[2013.09.30 18:24:40 | 000,001,565 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\IrfanView Thumbnails.lnk
[2013.09.30 18:24:40 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\Gabryš\Desktop\IrfanView.lnk
[2013.09.30 17:59:30 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013.09.29 21:17:59 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
[2013.09.29 21:17:59 | 000,000,015 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgho
[2013.09.29 13:58:12 | 000,000,142 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
[2013.09.29 13:58:12 | 000,000,020 | ---- | M] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhho
[2013.09.25 19:41:45 | 000,043,326 | ---- | M] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg

========== Files Created - No Company Name ==========

[Gabryš]

[2013.10.25 13:03:13 | 000,005,078 | ---- | C] () -- C:\FixitRegBackup.reg
[2013.10.25 01:35:28 | 000,587,448 | ---- | C] () -- C:\Documents and Settings\Gabryš\Desktop\reset_access_avg2014_cz.exe
[2013.10.21 21:11:56 | 000,018,598 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2013.10.17 15:42:54 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Media Player Classic.lnk
[2013.10.15 12:10:02 | 000,000,280 | ---- | C] () -- C:\WINDOWS\tasks\AdvancedDriverUpdater_UPDATES.job
[2013.10.15 02:06:54 | 000,000,571 | ---- | C] () -- C:\Documents and Settings\Gabryš\Desktop\7backup.lnk
[2013.10.09 19:40:26 | 000,000,079 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2013.10.08 16:52:51 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\deadbeef
[2013.10.08 16:50:36 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\filuri.exe
[2013.10.08 16:50:33 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\gixyhe.exe
[2013.10.08 16:04:45 | 000,000,280 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurwe
[2013.10.08 16:04:45 | 000,000,014 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iqifurof
[2013.10.08 15:15:30 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\bilic.exe
[2013.10.08 14:33:47 | 000,000,326 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\roasreha
[2013.10.08 14:33:47 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\roasredr
[2013.10.08 14:26:14 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xoroke.exe
[2013.10.08 00:18:24 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\pytyx.exe
[2013.10.08 00:00:23 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\qozexy.exe
[2013.10.07 19:29:04 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xinem.exe
[2013.10.07 19:24:09 | 000,000,388 | ---- | C] () -- C:\WINDOWS\tasks\One-Click Optimizer.job
[2013.10.07 19:23:52 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo WinOptimizer 10.lnk
[2013.10.07 19:17:26 | 000,000,886 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Anti-Virus.lnk
[2013.10.07 00:52:41 | 000,030,809 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigqt
[2013.10.07 00:52:41 | 000,000,018 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\fidaigao
[2013.09.30 20:50:13 | 000,005,872 | ---- | C] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
[2013.09.29 21:14:40 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
[2013.09.29 21:14:40 | 000,000,015 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eyysdgho
[2013.09.29 13:58:12 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
[2013.09.29 13:58:12 | 000,000,020 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\iyrowhho
[2013.09.26 11:45:39 | 000,000,333 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\frduerwt
[2013.09.26 11:45:39 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\frdueroo
[2013.09.25 19:41:43 | 000,043,326 | ---- | C] () -- C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg
[2013.09.25 11:20:19 | 000,315,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hesir.exe
[2013.09.25 00:35:05 | 000,014,122 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapytq
[2013.09.25 00:35:05 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\eiiapyui
[2013.09.24 22:20:41 | 000,000,016 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\1b7d5af6
[2013.09.24 22:20:41 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\995d1850
[2013.09.24 22:20:41 | 000,000,002 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\da6d39a3
[2013.09.24 22:20:40 | 001,799,925 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\frduerwt
[2013.09.24 22:20:40 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\frdueroo
[2013.07.31 19:04:44 | 000,030,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\ET5Drv.sys.dump
[2013.07.31 18:15:31 | 000,170,753 | ---- | C] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\9f2c10a0-f56c-464d-b90f-23109eb5be53
[2013.04.18 19:21:46 | 000,000,143 | ---- | C] () -- C:\WINDOWS\ScreenHunter.INI
[2013.03.27 03:47:51 | 000,003,068 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin
[2013.03.21 01:46:09 | 000,138,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2013.03.21 00:12:40 | 000,281,688 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2013.03.21 00:12:38 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2012.12.19 21:54:02 | 000,018,191 | ---- | C] () -- C:\Documents and Settings\Gabryš\tbs.jar
[2012.12.19 21:54:01 | 003,911,040 | ---- | C] () -- C:\Documents and Settings\Gabryš\RapidShareManager.jar
[2012.12.19 21:54:01 | 000,080,713 | ---- | C] () -- C:\Documents and Settings\Gabryš\License Agreement.pdf
[2012.11.23 01:32:42 | 000,000,810 | ---- | C] () -- C:\WINDOWS\Rtcw.INI
[2012.09.20 20:03:37 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2012.02.18 14:02:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012.02.16 07:19:47 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.17 11:22:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\graphedit.INI
[2012.01.07 20:47:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI
[2012.01.07 20:42:01 | 000,081,936 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2012.01.07 20:38:04 | 000,025,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2011.10.26 19:40:20 | 003,555,144 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2010.12.26 23:39:25 | 000,282,686 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1801674531-343818398-839522115-1003-0.dat
[2010.12.26 23:39:21 | 002,148,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1801674531-343818398-839522115-1004-0.dat
[2010.12.26 23:39:19 | 000,282,686 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010.12.17 14:14:58 | 000,012,800 | ---- | C] () -- C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.01 04:58:29 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Gabryš\default.pls
[2010.11.30 00:43:39 | 000,000,272 | ---- | C] () -- C:\Documents and Settings\Gabryš\Application Data\default.rss
[2010.11.25 18:31:36 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat

========== ZeroAccess Check ==========

[2010.11.25 19:28:30 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 02:12:05 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 14:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 02:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.07.20 10:15:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013.10.07 19:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ashampoo
[2013.10.09 19:44:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011.07.06 22:17:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Awem
[2010.11.25 20:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2013.10.06 21:43:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010.11.26 23:11:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010.12.22 12:25:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Whiz
[2010.12.15 22:24:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure
[2013.03.26 20:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg
[2012.11.12 22:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GoldWave
[2013.04.20 00:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2012.11.22 17:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2013.10.11 19:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RFA_Backups
[2011.06.21 00:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SugarGames
[2011.04.20 18:55:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tages
[2012.02.08 01:27:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011.05.25 23:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2011.05.25 23:30:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2011.07.09 10:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2013.03.26 20:19:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\1-abc
[2010.12.29 21:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\AnvSoft
[2012.03.30 16:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Audacity
[2013.03.26 20:26:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\avidemux
[2013.04.17 15:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\BSplayer
[2013.04.17 15:33:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\BSplayer Pro
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Conversations Network
[2012.03.22 14:56:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\cYo
[2013.03.07 13:01:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\DAEMON Tools Lite
[2013.01.19 23:39:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\DVDVideoSoft
[2011.11.23 01:40:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\EnchantedCavern
[2012.01.29 23:41:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ERS G-Studio
[2012.12.14 10:26:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ERS Game Studios
[2011.04.04 22:05:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\EurekaLog
[2013.03.17 21:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\FileZilla
[2010.12.16 02:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\GHISLER
[2013.01.19 23:41:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\HandBrake
[2011.02.09 16:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Import Audio from Video
[2011.11.27 22:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\JaiboGames
[2012.01.07 20:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Leadertech
[2013.07.18 17:53:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\LocalLow
[2011.04.09 13:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\mkvtoolnix
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Mp3tag
[2012.02.10 00:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Need for Speed World
[2013.10.07 01:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\ObviousIdea
[2010.11.25 18:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Opera
[2010.11.29 23:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Publish Providers
[2013.05.30 12:32:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Seznam.cz
[2010.12.26 21:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Sony
[2011.03.02 17:13:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Sound Editor Deluxe
[2011.03.13 17:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Spacejock Software
[2011.11.23 17:14:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\SuperEasy Software
[2013.10.15 12:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Systweak
[2012.12.14 17:31:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TagScanner
[2013.03.26 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TeamViewer
[2011.04.04 21:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\thecleaner
[2013.10.06 21:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\TuneUp Software
[2010.11.27 00:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Uniblue
[2012.01.22 19:01:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\URSE Games
[2012.07.25 23:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\uTorrent
[2011.06.15 18:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\VitySoft
[2010.11.29 18:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\Xilisoft
[2012.12.21 17:12:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gabryš\Application Data\xrecode2

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\autochk.EXE:SummaryInformation
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EE323A4

< End of report >

[Gabryš]

Soubor Extras.txt se nevytvořil ani po opětovném spuštění, mám jen ten původní z 20.10.

[Gabryš]

ani dnes po restartu se Extras nevytvořil. Zase jen OTL.

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (XDva394) -- C:\WINDOWS\system32\XDva394.sys File not found
DRV - (XDva391) -- C:\WINDOWS\system32\XDva391.sys File not found
DRV - (XDva390) -- C:\WINDOWS\system32\XDva390.sys File not found
DRV - (XDva387) -- C:\WINDOWS\system32\XDva387.sys File not found
DRV - (XDva385) -- C:\WINDOWS\system32\XDva385.sys File not found
DRV - (WDICA) -- File not found
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (LVRS) -- system32\DRIVERS\lvrs.sys File not found
DRV - (lvpopflt) -- system32\DRIVERS\lvpopflt.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FilterService) -- system32\DRIVERS\lvuvcflt.sys File not found
DRV - (bulbashy) -- C:\WINDOWS\system32\drivers\bulbashy.sys File not found
DRV - (BTHidMgr) -- System32\Drivers\BTHidMgr.sys File not found
DRV - (BTHidEnum) -- System32\Drivers\vbtenum.sys File not found
DRV - (BT) -- system32\DRIVERS\btnetdrv.sys File not found
DRV - (BlueletSCOAudio) -- system32\DRIVERS\BlueletSCOAudio.sys File not found
DRV - (BlueletAudio) -- system32\DRIVERS\blueletaudio.sys File not found
DRV - (api5z1qk) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{E538FB74-B2D2-4B46-9553-A6DE405F19C7}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
[2013.01.19 23:11:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions
[2013.10.09 20:23:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012.03.08 18:50:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions
[2012.03.08 18:50:54 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2013.10.09 20:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions
[2013.10.09 20:23:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\extensions
[2012.11.15 19:30:12 | 000,214,020 | ---- | M] () (No name found) -- C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions \socksharedownloader@socksharedownloader.com.xpi
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... BC/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {00000161-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... /msaud.CAB (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O32 - AutoRun File - [2010.01.28 22:00:27 | 000,000,088 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{2c34e4cc-f89b-11df-99d2-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\Shell\AutoRun\command - "" = F:\autorun.exe
[2013.10.19 15:49:13 | 000,513,470 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.10.19 15:49:13 | 000,092,198 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EE323A4

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Documents and Settings\Gabryš\Desktop\avg_remover_stf_x86_2014_4116.exe
C:\AVGTemp
C:\32788R22FWJFW
C:\WINDOWS\System32\aswBoot.exe
C:\Documents and Settings\All Users\Application Data\AVAST Software
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\Gabryš\Desktop\reset_access_avg2014_cz.exe
C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\System32\d3d9caps.dat
C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg
C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg
C:\Documents and Settings\All Users\Application Data\AVAST Software

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

C:\Documents and Settings\NetworkService\Application Data\frduefah
C:\Documents and Settings\Gabryš\Application Data\frduerwt
C:\Documents and Settings\Gabryš\Application Data\frdueroo
C:\Documents and Settings\All Users\Application Data\deadbeef
C:\Documents and Settings\Gabryš\Application Data\iqifurwe
C:\Documents and Settings\Gabryš\Application Data\iqifurof
C:\Documents and Settings\Gabryš\Application Data\roasreha
C:\Documents and Settings\Gabryš\Application Data\roasredr
C:\Documents and Settings\Gabryš\Application Data\eiiapytq
C:\Documents and Settings\Gabryš\Application Data\eiiapyui
C:\Documents and Settings\Gabryš\Application Data\fidaigqt
C:\Documents and Settings\Gabryš\Application Data\fidaigao
C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
C:\Documents and Settings\Gabryš\Application Data\eyysdgho
C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
C:\Documents and Settings\Gabryš\Application Data\iyrowhho
C:\Documents and Settings\All Users\Application Data\deadbeef
C:\Documents and Settings\All Users\Application Data\filuri.exe
C:\Documents and Settings\All Users\Application Data\gixyhe.exe
C:\Documents and Settings\Gabryš\Application Data\iqifurwe
C:\Documents and Settings\Gabryš\Application Data\iqifurof
C:\Documents and Settings\All Users\Application Data\bilic.exe
C:\Documents and Settings\Gabryš\Application Data\roasreha
C:\Documents and Settings\Gabryš\Application Data\roasredr
C:\Documents and Settings\All Users\Application Data\xoroke.exe
C:\Documents and Settings\All Users\Application Data\pytyx.exe
C:\Documents and Settings\All Users\Application Data\qozexy.exe
C:\Documents and Settings\All Users\Application Data\xinem.exe
C:\Documents and Settings\Gabryš\Application Data\fidaigqt
C:\Documents and Settings\Gabryš\Application Data\fidaigao
C:\Documents and Settings\Gabryš\Application Data\eyysdgdt
C:\Documents and Settings\Gabryš\Application Data\eyysdgho
C:\Documents and Settings\Gabryš\Application Data\iyrowhdt
C:\Documents and Settings\Gabryš\Application Data\iyrowhho
C:\Documents and Settings\NetworkService\Application Data\frduerwt
C:\Documents and Settings\NetworkService\Application Data\frdueroo
C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg
C:\Documents and Settings\All Users\Application Data\hesir.exe
C:\Documents and Settings\Gabryš\Application Data\eiiapytq
C:\Documents and Settings\Gabryš\Application Data\eiiapyui
C:\Documents and Settings\All Users\Application Data\1b7d5af6
C:\Documents and Settings\All Users\Application Data\995d1850
C:\Documents and Settings\All Users\Application Data\da6d39a3
C:\Documents and Settings\Gabryš\Application Data\frduerwt
C:\Documents and Settings\Gabryš\Application Data\frdueroo
C:\Documents and Settings\Gabryš\Application Data\cYo

říkají Ti něco tyhle programy , složky , soubory??

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\System32\autochk.EXE

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

[Gabryš]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service XDva394 stopped successfully!
Service XDva394 deleted successfully!
File C:\WINDOWS\system32\XDva394.sys File not found not found.
Service XDva391 stopped successfully!
Service XDva391 deleted successfully!
File C:\WINDOWS\system32\XDva391.sys File not found not found.
Service XDva390 stopped successfully!
Service XDva390 deleted successfully!
File C:\WINDOWS\system32\XDva390.sys File not found not found.
Service XDva387 stopped successfully!
Service XDva387 deleted successfully!
File C:\WINDOWS\system32\XDva387.sys File not found not found.
Service XDva385 stopped successfully!
Service XDva385 deleted successfully!
File C:\WINDOWS\system32\XDva385.sys File not found not found.
Service WDICA stopped successfully!
Service WDICA deleted successfully!
File File not found not found.
Service VcommMgr stopped successfully!
Service VcommMgr deleted successfully!
File System32\Drivers\VcommMgr.sys File not found not found.
Service VComm stopped successfully!
Service VComm deleted successfully!
File system32\DRIVERS\VComm.sys File not found not found.
Service PDRFRAME stopped successfully!
Service PDRFRAME deleted successfully!
File File not found not found.
Service PDRELI stopped successfully!
Service PDRELI deleted successfully!
File File not found not found.
Service PDFRAME stopped successfully!
Service PDFRAME deleted successfully!
File File not found not found.
Service PDCOMP stopped successfully!
Service PDCOMP deleted successfully!
File File not found not found.
Service PCIDump stopped successfully!
Service PCIDump deleted successfully!
File File not found not found.
Service LVRS stopped successfully!
Service LVRS deleted successfully!
File system32\DRIVERS\lvrs.sys File not found not found.
Service lvpopflt stopped successfully!
Service lvpopflt deleted successfully!
File system32\DRIVERS\lvpopflt.sys File not found not found.
Service lbrtfdc stopped successfully!
Service lbrtfdc deleted successfully!
File File not found not found.
Service i2omgmt stopped successfully!
Service i2omgmt deleted successfully!
File File not found not found.
Service Changer stopped successfully!
Service Changer deleted successfully!
File File not found not found.
Service FilterService stopped successfully!
Service FilterService deleted successfully!
File system32\DRIVERS\lvuvcflt.sys File not found not found.
Service bulbashy stopped successfully!
Service bulbashy deleted successfully!
File C:\WINDOWS\system32\drivers\bulbashy.sys File not found not found.
Service BTHidMgr stopped successfully!
Service BTHidMgr deleted successfully!
File System32\Drivers\BTHidMgr.sys File not found not found.
Service BTHidEnum stopped successfully!
Service BTHidEnum deleted successfully!
File System32\Drivers\vbtenum.sys File not found not found.
Service BT stopped successfully!
Service BT deleted successfully!
File system32\DRIVERS\btnetdrv.sys File not found not found.
Service BlueletSCOAudio stopped successfully!
Service BlueletSCOAudio deleted successfully!
File system32\DRIVERS\BlueletSCOAudio.sys File not found not found.
Service BlueletAudio stopped successfully!
Service BlueletAudio deleted successfully!
File system32\DRIVERS\blueletaudio.sys File not found not found.
Error: No service named api5z1qk was found to stop!
Service\Driver key api5z1qk not found.
File File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E538FB74-B2D2-4B46-9553-A6DE405F19C7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E538FB74-B2D2-4B46-9553-A6DE405F19C7}\ not found.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions folder moved successfully.
Folder C:\Documents and Settings\Gabryš\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\ not found.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\searchplugin folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\META-INF folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\defaults folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\components folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} folder moved successfully.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions folder moved successfully.
Folder C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\ not found.
C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\extensions folder moved successfully.
Folder C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions\extensions\ not found.
File C:\Documents and Settings\Gabryš\Application Data\Mozilla\Firefox\Profiles\extensions \socksharedownloader@socksharedownloader.com.xpi not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Starting removal of ActiveX control {00000055-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\fhg.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000055-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {00000161-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\msaud.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000161-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000161-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{00000161-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000161-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
File move failed. G:\autorun.inf scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2c34e4cc-f89b-11df-99d2-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2c34e4cc-f89b-11df-99d2-806d6172696f}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4e71ee6e-8fa6-11e2-9dd9-806d6172696f}\ not found.
File F:\autorun.exe not found.
C:\WINDOWS\system32\perfh009.dat moved successfully.
C:\WINDOWS\system32\perfc009.dat moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4EE323A4 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\AdvancedDriverUpdater_UPDATES.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
c:\windows\Tasks\One-Click Optimizer.job moved successfully.
c:\windows\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1801674531-343818398-839522115-1004.job moved successfully.
c:\windows\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job moved successfully.
c:\windows\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1004.job moved successfully.
c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1003.job moved successfully.
c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-343818398-839522115-1004.job moved successfully.
c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1003.job moved successfully.
c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1801674531-343818398-839522115-1004.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Documents and Settings\Gabryš\Desktop\avg_remover_stf_x86_2014_4116.exe moved successfully.
C:\AVGTemp\reset_access_avg2014_cz folder moved successfully.
C:\AVGTemp folder moved successfully.
C:\32788R22FWJFW folder moved successfully.
C:\WINDOWS\System32\aswBoot.exe moved successfully.
C:\Documents and Settings\All Users\Application Data\AVAST Software folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Quarantine folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Cleaning folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy folder moved successfully.
C:\Documents and Settings\Gabryš\Desktop\reset_access_avg2014_cz.exe moved successfully.
C:\Documents and Settings\Gabryš\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg moved successfully.
C:\Documents and Settings\Gabryš\My Documents\cc_20130925_194137.reg moved successfully.
File\Folder C:\Documents and Settings\Gabryš\My Documents\cc_20130930_205012.reg not found.
File\Folder C:\Documents and Settings\All Users\Application Data\AVAST Software not found.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 2442080 bytes
->Temporary Internet Files folder emptied: 58258 bytes
->Java cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: gabrya

User: Gabrys
->Temporary Internet Files folder emptied: 0 bytes

User: Gabryš

User: Gabryš
->Temp folder emptied: 1431290 bytes
->Temporary Internet Files folder emptied: 2312933 bytes
->Java cache emptied: 1837265 bytes
->Google Chrome cache emptied: 0 bytes
->Opera cache emptied: 19015874 bytes
->Flash cache emptied: 15409 bytes

User: Jurai
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 4320 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 19312 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 2480 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 6571494463 bytes

Total Files Cleaned = 6 293,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10262013_121216

Files\Folders moved on Reboot...
File move failed. G:\autorun.inf scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[Gabryš]

ani jeden z tebou nabídnutých souborů mi neříká vůbec nic. (ale těch které mi nic neříkají je v pc spousta )
Java 6 odinstalována

[Gabryš]

https://www.virustotal.com/cs/file/a3ff ... 382784600/

ale mám tam i autochk2

[Gabryš]

Pro jistotu ještě tedy autochk2
https://www.virustotal.com/cs/file/318a ... 382784980/
ten má zelenou 5